Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-28863 (GCVE-0-2024-28863)
Vulnerability from cvelistv5 – Published: 2024-03-21 22:10 – Updated: 2025-02-13 17:47
VLAI?
EPSS
Summary
node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders.
Severity ?
6.5 (Medium)
CWE
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T00:56:58.545Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"name": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:node-tar_project:node-tar:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "node-tar",
"vendor": "node-tar_project",
"versions": [
{
"lessThan": "6.2.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-28863",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-03-22T14:55:49.306359Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-08-02T13:53:49.389Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "node-tar",
"vendor": "isaacs",
"versions": [
{
"status": "affected",
"version": "\u003c 6.2.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "CWE-770: Allocation of Resources Without Limits or Throttling",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-10T16:10:26.224Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"name": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"source": {
"advisory": "GHSA-f5x3-32g6-xq36",
"discovery": "UNKNOWN"
},
"title": "node-tar vulnerable to denial of service while parsing a tar file due to lack of folders count validation"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-28863",
"datePublished": "2024-03-21T22:10:23.603Z",
"dateReserved": "2024-03-11T22:45:07.686Z",
"dateUpdated": "2025-02-13T17:47:34.618Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders.\"}, {\"lang\": \"es\", \"value\": \"node-tar es un Tar para Node.js. Node-tar anterior a la versi\\u00f3n 6.2.1 no tiene l\\u00edmite en la cantidad de subcarpetas creadas en el proceso de creaci\\u00f3n de carpetas. Un atacante que genera una gran cantidad de subcarpetas puede consumir memoria en el sistema que ejecuta node-tar e incluso bloquear el cliente Node.js a los pocos segundos de ejecutarlo usando una ruta con demasiadas subcarpetas dentro. La versi\\u00f3n 6.2.1 soluciona este problema impidiendo la extracci\\u00f3n en subcarpetas excesivamente profundas.\"}]",
"id": "CVE-2024-28863",
"lastModified": "2024-11-21T09:07:04.023",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}]}",
"published": "2024-03-21T23:15:10.910",
"references": "[{\"url\": \"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240524-0005/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240524-0005/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}, {\"lang\": \"en\", \"value\": \"CWE-770\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-28863\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-03-21T23:15:10.910\",\"lastModified\":\"2024-11-21T09:07:04.023\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders.\"},{\"lang\":\"es\",\"value\":\"node-tar es un Tar para Node.js. Node-tar anterior a la versi\u00f3n 6.2.1 no tiene l\u00edmite en la cantidad de subcarpetas creadas en el proceso de creaci\u00f3n de carpetas. Un atacante que genera una gran cantidad de subcarpetas puede consumir memoria en el sistema que ejecuta node-tar e incluso bloquear el cliente Node.js a los pocos segundos de ejecutarlo usando una ruta con demasiadas subcarpetas dentro. La versi\u00f3n 6.2.1 soluciona este problema impidiendo la extracci\u00f3n en subcarpetas excesivamente profundas.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"},{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"references\":[{\"url\":\"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240524-0005/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240524-0005/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\", \"name\": \"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\", \"name\": \"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240524-0005/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T00:56:58.545Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-28863\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-03-22T14:55:49.306359Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:node-tar_project:node-tar:*:*:*:*:*:*:*:*\"], \"vendor\": \"node-tar_project\", \"product\": \"node-tar\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"6.2.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-02T13:53:30.672Z\"}}], \"cna\": {\"title\": \"node-tar vulnerable to denial of service while parsing a tar file due to lack of folders count validation\", \"source\": {\"advisory\": \"GHSA-f5x3-32g6-xq36\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"isaacs\", \"product\": \"node-tar\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 6.2.1\"}]}], \"references\": [{\"url\": \"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\", \"name\": \"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\", \"name\": \"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240524-0005/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-400\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"CWE-770: Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-06-10T16:10:26.224Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-28863\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:47:34.618Z\", \"dateReserved\": \"2024-03-11T22:45:07.686Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-03-21T22:10:23.603Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2024-AVI-0630
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans IBM QRadar. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar Pulse App versions ant\u00e9rieures \u00e0 2.2.14",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Data Synchronization App versions ant\u00e9rieures \u00e0 3.2.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Network Packet Capture versions 7.5.0 ant\u00e9rieures \u00e0 7.5.0 Update Package 8",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2018-3721",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3721"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2021-23364",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23364"
},
{
"name": "CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2023-3817",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3817"
},
{
"name": "CVE-2021-23436",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23436"
},
{
"name": "CVE-2022-37603",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37603"
},
{
"name": "CVE-2023-36632",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36632"
},
{
"name": "CVE-2022-25883",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25883"
},
{
"name": "CVE-2024-29415",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29415"
},
{
"name": "CVE-2023-45133",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45133"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2016-10540",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10540"
},
{
"name": "CVE-2020-28477",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28477"
},
{
"name": "CVE-2023-5981",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5981"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2022-43441",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43441"
},
{
"name": "CVE-2021-43138",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43138"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2023-0842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0842"
},
{
"name": "CVE-2024-27983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27983"
},
{
"name": "CVE-2022-37601",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37601"
},
{
"name": "CVE-2024-27982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27982"
},
{
"name": "CVE-2023-3341",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3341"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2024-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0553"
},
{
"name": "CVE-2023-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3609"
},
{
"name": "CVE-2022-3517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3517"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-27088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27088"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2022-25881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25881"
},
{
"name": "CVE-2021-24033",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-24033"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-31905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31905"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2018-16487",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16487"
},
{
"name": "CVE-2021-42740",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42740"
},
{
"name": "CVE-2016-10538",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10538"
},
{
"name": "CVE-2023-35001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35001"
},
{
"name": "CVE-2024-28835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28835"
},
{
"name": "CVE-2023-32233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32233"
},
{
"name": "CVE-2023-42282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42282"
},
{
"name": "CVE-2023-39615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39615"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2023-0361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0361"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0567"
},
{
"name": "CVE-2021-3757",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3757"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0630",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-07-26T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans IBM QRadar. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM QRadar",
"vendor_advisories": [
{
"published_at": "2024-07-24",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161462",
"url": "https://www.ibm.com/support/pages/node/7161462"
},
{
"published_at": "2024-07-23",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160961",
"url": "https://www.ibm.com/support/pages/node/7160961"
},
{
"published_at": "2024-07-22",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160858",
"url": "https://www.ibm.com/support/pages/node/7160858"
}
]
}
CERTFR-2024-AVI-1051
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | VIOS | VIOS version 3.1 sans le correctif invscout_fix7.tar | ||
| IBM | AIX | AIX version 7.3 sans le correctif invscout_fix7.tar | ||
| IBM | Cognos Controller | Cognos Controller versions 11.0.x antérieures à 11.0.1 FP3 | ||
| IBM | AIX | AIX version 7.2 sans le correctif invscout_fix7.tar | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.x antérieures à 6.2.2.2 | ||
| IBM | QRadar Use Case Manager App | QRadar Use Case Manager App versions antérieures à 4.0.0 | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.1.x antérieures à 6.1.2.10 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.1.x antérieures à 6.1.2.10 | ||
| IBM | VIOS | VIOS version 4.1 sans le correctif invscout_fix7.tar | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.x antérieures à 6.2.3.2 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "VIOS version 3.1 sans le correctif invscout_fix7.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 sans le correctif invscout_fix7.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Controller versions 11.0.x ant\u00e9rieures \u00e0 11.0.1 FP3",
"product": {
"name": "Cognos Controller",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.2 sans le correctif invscout_fix7.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.x ant\u00e9rieures \u00e0 6.2.2.2",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Use Case Manager App versions ant\u00e9rieures \u00e0 4.0.0",
"product": {
"name": "QRadar Use Case Manager App",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.1.x ant\u00e9rieures \u00e0 6.1.2.10",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.1.x ant\u00e9rieures \u00e0 6.1.2.10",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 sans le correctif invscout_fix7.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.x ant\u00e9rieures \u00e0 6.2.3.2",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-20919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-21938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
},
{
"name": "CVE-2023-21843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21843"
},
{
"name": "CVE-2024-47115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47115"
},
{
"name": "CVE-2021-29425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29425"
},
{
"name": "CVE-2022-32213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32213"
},
{
"name": "CVE-2021-22959",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22959"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-25020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25020"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2022-35256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35256"
},
{
"name": "CVE-2023-21954",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21954"
},
{
"name": "CVE-2023-21939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
},
{
"name": "CVE-2024-20926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
},
{
"name": "CVE-2024-22353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22353"
},
{
"name": "CVE-2024-41777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41777"
},
{
"name": "CVE-2024-21890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21890"
},
{
"name": "CVE-2024-21896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21896"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2021-36690",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36690"
},
{
"name": "CVE-2023-21830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21830"
},
{
"name": "CVE-2021-22940",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22940"
},
{
"name": "CVE-2023-23936",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23936"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2021-22930",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22930"
},
{
"name": "CVE-2024-25035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25035"
},
{
"name": "CVE-2024-20921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
},
{
"name": "CVE-2023-38737",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38737"
},
{
"name": "CVE-2023-24807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24807"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2021-22918",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22918"
},
{
"name": "CVE-2023-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22081"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2021-22939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22939"
},
{
"name": "CVE-2021-44532",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44532"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2022-0155",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0155"
},
{
"name": "CVE-2021-22960",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22960"
},
{
"name": "CVE-2024-41776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41776"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-25019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25019"
},
{
"name": "CVE-2022-32222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32222"
},
{
"name": "CVE-2023-22067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22067"
},
{
"name": "CVE-2022-32212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32212"
},
{
"name": "CVE-2023-23920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23920"
},
{
"name": "CVE-2024-21634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21634"
},
{
"name": "CVE-2023-23918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23918"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2021-22921",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22921"
},
{
"name": "CVE-2022-0536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0536"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2021-29892",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29892"
},
{
"name": "CVE-2024-45676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45676"
},
{
"name": "CVE-2023-49735",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49735"
},
{
"name": "CVE-2024-40691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40691"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2023-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
},
{
"name": "CVE-2024-27268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27268"
},
{
"name": "CVE-2022-32215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32215"
},
{
"name": "CVE-2023-33850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33850"
},
{
"name": "CVE-2023-2597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
},
{
"name": "CVE-2023-22045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22045"
},
{
"name": "CVE-2024-41775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41775"
},
{
"name": "CVE-2023-22049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22049"
},
{
"name": "CVE-2023-23919",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23919"
},
{
"name": "CVE-2020-28500",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28500"
},
{
"name": "CVE-2021-22931",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22931"
},
{
"name": "CVE-2023-44483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44483"
},
{
"name": "CVE-2021-44533",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44533"
},
{
"name": "CVE-2023-5676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5676"
},
{
"name": "CVE-2022-35737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35737"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2020-8203",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8203"
},
{
"name": "CVE-2022-25857",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25857"
},
{
"name": "CVE-2024-27270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27270"
},
{
"name": "CVE-2024-21891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21891"
},
{
"name": "CVE-2023-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
},
{
"name": "CVE-2022-32214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32214"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2022-21824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21824"
},
{
"name": "CVE-2023-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
},
{
"name": "CVE-2024-22017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22017"
},
{
"name": "CVE-2023-24998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24998"
},
{
"name": "CVE-2024-20918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
},
{
"name": "CVE-2022-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35255"
},
{
"name": "CVE-2024-25036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25036"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2021-44531",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44531"
},
{
"name": "CVE-2024-20945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
},
{
"name": "CVE-2023-39332",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39332"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2023-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21967"
},
{
"name": "CVE-2022-32223",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32223"
},
{
"name": "CVE-2023-26159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26159"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-1051",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-06T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178033",
"url": "https://www.ibm.com/support/pages/node/7178033"
},
{
"published_at": "2024-12-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178054",
"url": "https://www.ibm.com/support/pages/node/7178054"
},
{
"published_at": "2024-12-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177220",
"url": "https://www.ibm.com/support/pages/node/7177220"
},
{
"published_at": "2024-12-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177981",
"url": "https://www.ibm.com/support/pages/node/7177981"
}
]
}
CERTFR-2025-AVI-0021
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Security QRadar EDR | Security QRadar EDR versions antérieures à 3.12.14 | ||
| IBM | Spectrum | Spectrum Control versions 5.4.x antérieures à 5.4.13 | ||
| IBM | Spectrum | Spectrum Protect Plus versions 10.1.x antérieures à 10.1.6.4 pour Linux | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.x sans les derniers correctifs de sécurité | ||
| IBM | QRadar | QRadar Analyst Workflow versions antérieures à 2.34.0 | ||
| IBM | Db2 | Db2 Big SQL versions antérieures à 7.4.2 pour Cloud Pak for Data |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Security QRadar EDR versions ant\u00e9rieures \u00e0 3.12.14",
"product": {
"name": "Security QRadar EDR",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Control versions 5.4.x ant\u00e9rieures \u00e0 5.4.13 ",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.6.4 pour Linux",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x sans les derniers correctifs de s\u00e9curit\u00e9 ",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Analyst Workflow versions ant\u00e9rieures \u00e0 2.34.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Big SQL versions ant\u00e9rieures \u00e0 7.4.2 pour Cloud Pak for Data",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"name": "CVE-2023-52471",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52471"
},
{
"name": "CVE-2024-36889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36889"
},
{
"name": "CVE-2015-2156",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2156"
},
{
"name": "CVE-2023-43642",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43642"
},
{
"name": "CVE-2024-42246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42246"
},
{
"name": "CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"name": "CVE-2024-26614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26614"
},
{
"name": "CVE-2022-25869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25869"
},
{
"name": "CVE-2024-9355",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9355"
},
{
"name": "CVE-2023-26116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26116"
},
{
"name": "CVE-2024-26595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26595"
},
{
"name": "CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"name": "CVE-2024-26586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26586"
},
{
"name": "CVE-2024-26638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26638"
},
{
"name": "CVE-2024-47831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47831"
},
{
"name": "CVE-2020-7238",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7238"
},
{
"name": "CVE-2021-46939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46939"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-49766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49766"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2021-32036",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32036"
},
{
"name": "CVE-2024-26802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26802"
},
{
"name": "CVE-2024-36883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36883"
},
{
"name": "CVE-2024-26665",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26665"
},
{
"name": "CVE-2024-40960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40960"
},
{
"name": "CVE-2024-40997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40997"
},
{
"name": "CVE-2023-44270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44270"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2023-34454",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34454"
},
{
"name": "CVE-2024-26645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26645"
},
{
"name": "CVE-2024-42240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42240"
},
{
"name": "CVE-2024-40972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40972"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2024-40959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40959"
},
{
"name": "CVE-2023-34453",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34453"
},
{
"name": "CVE-2023-5072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5072"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2019-10202",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10202"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2021-32040",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32040"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2024-40974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40974"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-42124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42124"
},
{
"name": "CVE-2023-26117",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26117"
},
{
"name": "CVE-2022-3786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3786"
},
{
"name": "CVE-2023-52486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52486"
},
{
"name": "CVE-2014-0193",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0193"
},
{
"name": "CVE-2022-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21680"
},
{
"name": "CVE-2024-39502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39502"
},
{
"name": "CVE-2024-36005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36005"
},
{
"name": "CVE-2024-26929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26929"
},
{
"name": "CVE-2019-14863",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14863"
},
{
"name": "CVE-2023-52683",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52683"
},
{
"name": "CVE-2024-42131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42131"
},
{
"name": "CVE-2024-35944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35944"
},
{
"name": "CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"name": "CVE-2023-52469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52469"
},
{
"name": "CVE-2024-35809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35809"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2023-52809",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52809"
},
{
"name": "CVE-2023-52451",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52451"
},
{
"name": "CVE-2024-39472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39472"
},
{
"name": "CVE-2023-34455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34455"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"name": "CVE-2024-26733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26733"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2024-40998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40998"
},
{
"name": "CVE-2022-46751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46751"
},
{
"name": "CVE-2023-52470",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52470"
},
{
"name": "CVE-2021-43797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43797"
},
{
"name": "CVE-2020-7676",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7676"
},
{
"name": "CVE-2024-40995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40995"
},
{
"name": "CVE-2023-26118",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26118"
},
{
"name": "CVE-2024-42238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42238"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2024-43830",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43830"
},
{
"name": "CVE-2024-39501",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39501"
},
{
"name": "CVE-2023-52730",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52730"
},
{
"name": "CVE-2024-42090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42090"
},
{
"name": "CVE-2024-26960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26960"
},
{
"name": "CVE-2024-40901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40901"
},
{
"name": "CVE-2021-47321",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47321"
},
{
"name": "CVE-2024-26640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26640"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-49767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49767"
},
{
"name": "CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2024-47874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47874"
},
{
"name": "CVE-2024-42322",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42322"
},
{
"name": "CVE-2024-27019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27019"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-41055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41055"
},
{
"name": "CVE-2024-41076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41076"
},
{
"name": "CVE-2024-39506",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39506"
},
{
"name": "CVE-2024-40978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40978"
},
{
"name": "CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"name": "CVE-2019-10768",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10768"
},
{
"name": "CVE-2022-3602",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3602"
},
{
"name": "CVE-2024-41044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41044"
},
{
"name": "CVE-2024-40958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40958"
},
{
"name": "CVE-2024-26717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26717"
},
{
"name": "CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"name": "CVE-2024-42152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42152"
},
{
"name": "CVE-2024-39499",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39499"
},
{
"name": "CVE-2024-36006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36006"
},
{
"name": "CVE-2023-52476",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52476"
},
{
"name": "CVE-2023-52463",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52463"
},
{
"name": "CVE-2024-41064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41064"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2023-52530",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52530"
},
{
"name": "CVE-2024-36000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36000"
},
{
"name": "CVE-2024-26855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26855"
},
{
"name": "CVE-2019-16869",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16869"
},
{
"name": "CVE-2022-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21681"
},
{
"name": "CVE-2024-42237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42237"
},
{
"name": "CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"name": "CVE-2024-27011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27011"
},
{
"name": "CVE-2019-20445",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20445"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0021",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-01-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180462",
"url": "https://www.ibm.com/support/pages/node/7180462"
},
{
"published_at": "2025-01-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180361",
"url": "https://www.ibm.com/support/pages/node/7180361"
},
{
"published_at": "2025-01-04",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180282",
"url": "https://www.ibm.com/support/pages/node/7180282"
},
{
"published_at": "2025-01-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180314",
"url": "https://www.ibm.com/support/pages/node/7180314"
},
{
"published_at": "2025-01-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180450",
"url": "https://www.ibm.com/support/pages/node/7180450"
},
{
"published_at": "2025-01-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180545",
"url": "https://www.ibm.com/support/pages/node/7180545"
}
]
}
CERTFR-2024-AVI-0579
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Spectrum | Spectrum Control versions antérieures à 5.4.12 | ||
| IBM | WebSphere | WebSphere Application Server versions 8.5.x antérieures à 8.5.5.25 sans le correctif de sécurité PH61489 | ||
| IBM | WebSphere | WebSphere Application Server versions 9.0.x antérieures à 9.0.5.20 sans le correctif de sécurité PH61489 | ||
| IBM | QRadar | QRadar Deployment Intelligence App versions antérieures à 3.0.14 | ||
| IBM | QRadar | QRadar SIEM versions 7.5.x antérieures à 7.5.0 UP9 | ||
| IBM | Cloud Pak | Cloud Pak for Security versions antérieures à 1.10.23.0 | ||
| IBM | AIX | AIX versions 7.2 et 7.3 sans le correctif de sécurité 9211224a.240708.epkg.Z | ||
| IBM | QRadar | QRadar Suite Software versions antérieures à 1.10.23.0 | ||
| IBM | QRadar | Security QRadar EDR versions antérieures à 3.12.9 | ||
| IBM | VIOS | VIOS versions 3.1 et 4.1 sans le correctif de sécurité 9211224a.240708.epkg.Z | ||
| IBM | QRadar | QRadar WinCollect Agent versions antérieures à 10.1.11 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Spectrum Control versions ant\u00e9rieures \u00e0 5.4.12",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.25 sans le correctif de s\u00e9curit\u00e9 PH61489",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.5.20 sans le correctif de s\u00e9curit\u00e9 PH61489",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Deployment Intelligence App versions ant\u00e9rieures \u00e0 3.0.14",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP9",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak for Security versions ant\u00e9rieures \u00e0 1.10.23.0",
"product": {
"name": "Cloud Pak",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.2 et 7.3 sans le correctif de s\u00e9curit\u00e9 9211224a.240708.epkg.Z",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Suite Software versions ant\u00e9rieures \u00e0 1.10.23.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Security QRadar EDR versions ant\u00e9rieures \u00e0 3.12.9",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS versions 3.1 et 4.1 sans le correctif de s\u00e9curit\u00e9 9211224a.240708.epkg.Z",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar WinCollect Agent versions ant\u00e9rieures \u00e0 10.1.11",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-29483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29483"
},
{
"name": "CVE-2024-1597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1597"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-35154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35154"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-22353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22353"
},
{
"name": "CVE-2024-3772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3772"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2024-2466",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2466"
},
{
"name": "CVE-2024-28102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28102"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2020-15778",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15778"
},
{
"name": "CVE-2024-34997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34997"
},
{
"name": "CVE-2022-3287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3287"
},
{
"name": "CVE-2020-13936",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2023-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25193"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2023-45802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45802"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2024-34062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34062"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2021-41072",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41072"
},
{
"name": "CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"name": "CVE-2024-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1135"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2023-6918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6918"
},
{
"name": "CVE-2024-2379",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2379"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-2004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2004"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-31122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31122"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-3019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3019"
},
{
"name": "CVE-2024-5206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5206"
},
{
"name": "CVE-2024-27088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27088"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2023-44483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44483"
},
{
"name": "CVE-2023-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6004"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2024-27270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27270"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2023-46158",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46158"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2024-6387",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6387"
},
{
"name": "CVE-2024-25023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25023"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2021-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-40153"
},
{
"name": "CVE-2023-5752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5752"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0579",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-07-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159768",
"url": "https://www.ibm.com/support/pages/node/7159768"
},
{
"published_at": "2024-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160017",
"url": "https://www.ibm.com/support/pages/node/7160017"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159781",
"url": "https://www.ibm.com/support/pages/node/7159781"
},
{
"published_at": "2024-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160014",
"url": "https://www.ibm.com/support/pages/node/7160014"
},
{
"published_at": "2024-07-12",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160134",
"url": "https://www.ibm.com/support/pages/node/7160134"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159771",
"url": "https://www.ibm.com/support/pages/node/7159771"
},
{
"published_at": "2024-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159867",
"url": "https://www.ibm.com/support/pages/node/7159867"
},
{
"published_at": "2024-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159865",
"url": "https://www.ibm.com/support/pages/node/7159865"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159527",
"url": "https://www.ibm.com/support/pages/node/7159527"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159825",
"url": "https://www.ibm.com/support/pages/node/7159825"
},
{
"published_at": "2024-07-10",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159934",
"url": "https://www.ibm.com/support/pages/node/7159934"
},
{
"published_at": "2024-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159920",
"url": "https://www.ibm.com/support/pages/node/7159920"
},
{
"published_at": "2024-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160013",
"url": "https://www.ibm.com/support/pages/node/7160013"
}
]
}
CERTFR-2024-AVI-0579
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Spectrum | Spectrum Control versions antérieures à 5.4.12 | ||
| IBM | WebSphere | WebSphere Application Server versions 8.5.x antérieures à 8.5.5.25 sans le correctif de sécurité PH61489 | ||
| IBM | WebSphere | WebSphere Application Server versions 9.0.x antérieures à 9.0.5.20 sans le correctif de sécurité PH61489 | ||
| IBM | QRadar | QRadar Deployment Intelligence App versions antérieures à 3.0.14 | ||
| IBM | QRadar | QRadar SIEM versions 7.5.x antérieures à 7.5.0 UP9 | ||
| IBM | Cloud Pak | Cloud Pak for Security versions antérieures à 1.10.23.0 | ||
| IBM | AIX | AIX versions 7.2 et 7.3 sans le correctif de sécurité 9211224a.240708.epkg.Z | ||
| IBM | QRadar | QRadar Suite Software versions antérieures à 1.10.23.0 | ||
| IBM | QRadar | Security QRadar EDR versions antérieures à 3.12.9 | ||
| IBM | VIOS | VIOS versions 3.1 et 4.1 sans le correctif de sécurité 9211224a.240708.epkg.Z | ||
| IBM | QRadar | QRadar WinCollect Agent versions antérieures à 10.1.11 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Spectrum Control versions ant\u00e9rieures \u00e0 5.4.12",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.25 sans le correctif de s\u00e9curit\u00e9 PH61489",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.5.20 sans le correctif de s\u00e9curit\u00e9 PH61489",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Deployment Intelligence App versions ant\u00e9rieures \u00e0 3.0.14",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP9",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak for Security versions ant\u00e9rieures \u00e0 1.10.23.0",
"product": {
"name": "Cloud Pak",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.2 et 7.3 sans le correctif de s\u00e9curit\u00e9 9211224a.240708.epkg.Z",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Suite Software versions ant\u00e9rieures \u00e0 1.10.23.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Security QRadar EDR versions ant\u00e9rieures \u00e0 3.12.9",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS versions 3.1 et 4.1 sans le correctif de s\u00e9curit\u00e9 9211224a.240708.epkg.Z",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar WinCollect Agent versions ant\u00e9rieures \u00e0 10.1.11",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-29483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29483"
},
{
"name": "CVE-2024-1597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1597"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-35154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35154"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-22353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22353"
},
{
"name": "CVE-2024-3772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3772"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2024-2466",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2466"
},
{
"name": "CVE-2024-28102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28102"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2020-15778",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15778"
},
{
"name": "CVE-2024-34997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34997"
},
{
"name": "CVE-2022-3287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3287"
},
{
"name": "CVE-2020-13936",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2023-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25193"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2023-45802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45802"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2024-34062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34062"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2021-41072",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41072"
},
{
"name": "CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"name": "CVE-2024-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1135"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2023-6918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6918"
},
{
"name": "CVE-2024-2379",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2379"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-2004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2004"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-31122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31122"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-3019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3019"
},
{
"name": "CVE-2024-5206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5206"
},
{
"name": "CVE-2024-27088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27088"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2023-44483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44483"
},
{
"name": "CVE-2023-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6004"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2024-27270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27270"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2023-46158",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46158"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2024-6387",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6387"
},
{
"name": "CVE-2024-25023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25023"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2021-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-40153"
},
{
"name": "CVE-2023-5752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5752"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0579",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-07-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159768",
"url": "https://www.ibm.com/support/pages/node/7159768"
},
{
"published_at": "2024-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160017",
"url": "https://www.ibm.com/support/pages/node/7160017"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159781",
"url": "https://www.ibm.com/support/pages/node/7159781"
},
{
"published_at": "2024-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160014",
"url": "https://www.ibm.com/support/pages/node/7160014"
},
{
"published_at": "2024-07-12",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160134",
"url": "https://www.ibm.com/support/pages/node/7160134"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159771",
"url": "https://www.ibm.com/support/pages/node/7159771"
},
{
"published_at": "2024-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159867",
"url": "https://www.ibm.com/support/pages/node/7159867"
},
{
"published_at": "2024-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159865",
"url": "https://www.ibm.com/support/pages/node/7159865"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159527",
"url": "https://www.ibm.com/support/pages/node/7159527"
},
{
"published_at": "2024-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159825",
"url": "https://www.ibm.com/support/pages/node/7159825"
},
{
"published_at": "2024-07-10",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159934",
"url": "https://www.ibm.com/support/pages/node/7159934"
},
{
"published_at": "2024-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7159920",
"url": "https://www.ibm.com/support/pages/node/7159920"
},
{
"published_at": "2024-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160013",
"url": "https://www.ibm.com/support/pages/node/7160013"
}
]
}
CERTFR-2025-AVI-0021
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Security QRadar EDR | Security QRadar EDR versions antérieures à 3.12.14 | ||
| IBM | Spectrum | Spectrum Control versions 5.4.x antérieures à 5.4.13 | ||
| IBM | Spectrum | Spectrum Protect Plus versions 10.1.x antérieures à 10.1.6.4 pour Linux | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.x sans les derniers correctifs de sécurité | ||
| IBM | QRadar | QRadar Analyst Workflow versions antérieures à 2.34.0 | ||
| IBM | Db2 | Db2 Big SQL versions antérieures à 7.4.2 pour Cloud Pak for Data |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Security QRadar EDR versions ant\u00e9rieures \u00e0 3.12.14",
"product": {
"name": "Security QRadar EDR",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Control versions 5.4.x ant\u00e9rieures \u00e0 5.4.13 ",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.6.4 pour Linux",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x sans les derniers correctifs de s\u00e9curit\u00e9 ",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Analyst Workflow versions ant\u00e9rieures \u00e0 2.34.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Big SQL versions ant\u00e9rieures \u00e0 7.4.2 pour Cloud Pak for Data",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"name": "CVE-2023-52471",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52471"
},
{
"name": "CVE-2024-36889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36889"
},
{
"name": "CVE-2015-2156",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2156"
},
{
"name": "CVE-2023-43642",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43642"
},
{
"name": "CVE-2024-42246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42246"
},
{
"name": "CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"name": "CVE-2024-26614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26614"
},
{
"name": "CVE-2022-25869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25869"
},
{
"name": "CVE-2024-9355",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9355"
},
{
"name": "CVE-2023-26116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26116"
},
{
"name": "CVE-2024-26595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26595"
},
{
"name": "CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"name": "CVE-2024-26586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26586"
},
{
"name": "CVE-2024-26638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26638"
},
{
"name": "CVE-2024-47831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47831"
},
{
"name": "CVE-2020-7238",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7238"
},
{
"name": "CVE-2021-46939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46939"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-49766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49766"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2021-32036",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32036"
},
{
"name": "CVE-2024-26802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26802"
},
{
"name": "CVE-2024-36883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36883"
},
{
"name": "CVE-2024-26665",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26665"
},
{
"name": "CVE-2024-40960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40960"
},
{
"name": "CVE-2024-40997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40997"
},
{
"name": "CVE-2023-44270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44270"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2023-34454",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34454"
},
{
"name": "CVE-2024-26645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26645"
},
{
"name": "CVE-2024-42240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42240"
},
{
"name": "CVE-2024-40972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40972"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2024-40959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40959"
},
{
"name": "CVE-2023-34453",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34453"
},
{
"name": "CVE-2023-5072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5072"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2019-10202",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10202"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2021-32040",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32040"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2024-40974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40974"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-42124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42124"
},
{
"name": "CVE-2023-26117",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26117"
},
{
"name": "CVE-2022-3786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3786"
},
{
"name": "CVE-2023-52486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52486"
},
{
"name": "CVE-2014-0193",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0193"
},
{
"name": "CVE-2022-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21680"
},
{
"name": "CVE-2024-39502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39502"
},
{
"name": "CVE-2024-36005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36005"
},
{
"name": "CVE-2024-26929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26929"
},
{
"name": "CVE-2019-14863",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14863"
},
{
"name": "CVE-2023-52683",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52683"
},
{
"name": "CVE-2024-42131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42131"
},
{
"name": "CVE-2024-35944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35944"
},
{
"name": "CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"name": "CVE-2023-52469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52469"
},
{
"name": "CVE-2024-35809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35809"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2023-52809",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52809"
},
{
"name": "CVE-2023-52451",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52451"
},
{
"name": "CVE-2024-39472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39472"
},
{
"name": "CVE-2023-34455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34455"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"name": "CVE-2024-26733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26733"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2024-40998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40998"
},
{
"name": "CVE-2022-46751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46751"
},
{
"name": "CVE-2023-52470",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52470"
},
{
"name": "CVE-2021-43797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43797"
},
{
"name": "CVE-2020-7676",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7676"
},
{
"name": "CVE-2024-40995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40995"
},
{
"name": "CVE-2023-26118",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26118"
},
{
"name": "CVE-2024-42238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42238"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2024-43830",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43830"
},
{
"name": "CVE-2024-39501",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39501"
},
{
"name": "CVE-2023-52730",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52730"
},
{
"name": "CVE-2024-42090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42090"
},
{
"name": "CVE-2024-26960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26960"
},
{
"name": "CVE-2024-40901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40901"
},
{
"name": "CVE-2021-47321",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47321"
},
{
"name": "CVE-2024-26640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26640"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-49767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49767"
},
{
"name": "CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2024-47874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47874"
},
{
"name": "CVE-2024-42322",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42322"
},
{
"name": "CVE-2024-27019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27019"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-41055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41055"
},
{
"name": "CVE-2024-41076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41076"
},
{
"name": "CVE-2024-39506",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39506"
},
{
"name": "CVE-2024-40978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40978"
},
{
"name": "CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"name": "CVE-2019-10768",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10768"
},
{
"name": "CVE-2022-3602",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3602"
},
{
"name": "CVE-2024-41044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41044"
},
{
"name": "CVE-2024-40958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40958"
},
{
"name": "CVE-2024-26717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26717"
},
{
"name": "CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"name": "CVE-2024-42152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42152"
},
{
"name": "CVE-2024-39499",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39499"
},
{
"name": "CVE-2024-36006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36006"
},
{
"name": "CVE-2023-52476",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52476"
},
{
"name": "CVE-2023-52463",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52463"
},
{
"name": "CVE-2024-41064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41064"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2023-52530",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52530"
},
{
"name": "CVE-2024-36000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36000"
},
{
"name": "CVE-2024-26855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26855"
},
{
"name": "CVE-2019-16869",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16869"
},
{
"name": "CVE-2022-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21681"
},
{
"name": "CVE-2024-42237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42237"
},
{
"name": "CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"name": "CVE-2024-27011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27011"
},
{
"name": "CVE-2019-20445",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20445"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0021",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-01-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180462",
"url": "https://www.ibm.com/support/pages/node/7180462"
},
{
"published_at": "2025-01-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180361",
"url": "https://www.ibm.com/support/pages/node/7180361"
},
{
"published_at": "2025-01-04",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180282",
"url": "https://www.ibm.com/support/pages/node/7180282"
},
{
"published_at": "2025-01-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180314",
"url": "https://www.ibm.com/support/pages/node/7180314"
},
{
"published_at": "2025-01-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180450",
"url": "https://www.ibm.com/support/pages/node/7180450"
},
{
"published_at": "2025-01-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180545",
"url": "https://www.ibm.com/support/pages/node/7180545"
}
]
}
CERTFR-2024-AVI-1103
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Analytics | Cognos Analytics versions 12.0.x antérieures à 12.0.4 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.0.x antérieures à 6.1.0.2 ifix 01 | ||
| IBM | QRadar SIEM | Security QRadar Log Management AQL Plugin versions antérieures à 1.1.0 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.0.x antérieures à 6.0.3.1 (fixpack) GA | ||
| IBM | Cognos Analytics | Cognos Analytics versions 11.2.x antérieures à 11.2.4 FP5 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.x antérieures à 6.1.0.1 (fixpack) GA | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.x antérieures à 6.2.0.0 ifix 01 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.x antérieures à 6.3.0.11_ifix001 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Analytics versions 12.0.x ant\u00e9rieures \u00e0 12.0.4",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.2 ifix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": " Security QRadar Log Management AQL Plugin versions ant\u00e9rieures \u00e0 1.1.0",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.0.x ant\u00e9rieures \u00e0 6.0.3.1 (fixpack) GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Analytics versions 11.2.x ant\u00e9rieures \u00e0 11.2.4 FP5",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.1 (fixpack) GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.0 ifix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.11_ifix001",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2017-9937",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9937"
},
{
"name": "CVE-2023-52356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52356"
},
{
"name": "CVE-2023-41334",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41334"
},
{
"name": "CVE-2023-37536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37536"
},
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2024-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22871"
},
{
"name": "CVE-2024-7006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7006"
},
{
"name": "CVE-2023-3316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3316"
},
{
"name": "CVE-2024-36138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36138"
},
{
"name": "CVE-2018-14042",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14042"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2021-45960",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45960"
},
{
"name": "CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"name": "CVE-2022-3626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3626"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-22201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22201"
},
{
"name": "CVE-2020-12401",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12401"
},
{
"name": "CVE-2018-15209",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15209"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2018-17100",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17100"
},
{
"name": "CVE-2022-3599",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3599"
},
{
"name": "CVE-2022-34266",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34266"
},
{
"name": "CVE-2020-35521",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35521"
},
{
"name": "CVE-2023-0796",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0796"
},
{
"name": "CVE-2023-50386",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50386"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-23944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23944"
},
{
"name": "CVE-2022-48554",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48554"
},
{
"name": "CVE-2024-39008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39008"
},
{
"name": "CVE-2018-14040",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14040"
},
{
"name": "CVE-2024-28757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28757"
},
{
"name": "CVE-2023-30086",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30086"
},
{
"name": "CVE-2019-11727",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11727"
},
{
"name": "CVE-2024-25638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25638"
},
{
"name": "CVE-2022-2057",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2057"
},
{
"name": "CVE-2019-6128",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6128"
},
{
"name": "CVE-2023-26965",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26965"
},
{
"name": "CVE-2022-22823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22823"
},
{
"name": "CVE-2023-52426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52426"
},
{
"name": "CVE-2022-2058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2058"
},
{
"name": "CVE-2024-45082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45082"
},
{
"name": "CVE-2023-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50782"
},
{
"name": "CVE-2022-3627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3627"
},
{
"name": "CVE-2022-2867",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2867"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-32067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32067"
},
{
"name": "CVE-2022-3598",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3598"
},
{
"name": "CVE-2023-0798",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0798"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2023-2731",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2731"
},
{
"name": "CVE-2023-0803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0803"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30774"
},
{
"name": "CVE-2023-4759",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4759"
},
{
"name": "CVE-2017-11613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11613"
},
{
"name": "CVE-2017-12652",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12652"
},
{
"name": "CVE-2024-41752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41752"
},
{
"name": "CVE-2023-50447",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50447"
},
{
"name": "CVE-2018-18508",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18508"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-33883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33883"
},
{
"name": "CVE-2022-40897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40897"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2022-22844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22844"
},
{
"name": "CVE-2014-1544",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1544"
},
{
"name": "CVE-2023-4421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4421"
},
{
"name": "CVE-2023-6277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6277"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2023-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50298"
},
{
"name": "CVE-2024-25629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25629"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2023-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50292"
},
{
"name": "CVE-2018-20676",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20676"
},
{
"name": "CVE-2023-0802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0802"
},
{
"name": "CVE-2022-2056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2056"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2021-43138",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43138"
},
{
"name": "CVE-2020-25648",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25648"
},
{
"name": "CVE-2019-17023",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17023"
},
{
"name": "CVE-2022-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21699"
},
{
"name": "CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"name": "CVE-2019-7317",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7317"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2019-17007",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17007"
},
{
"name": "CVE-2023-0767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0767"
},
{
"name": "CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"name": "CVE-2022-23852",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23852"
},
{
"name": "CVE-2022-22825",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22825"
},
{
"name": "CVE-2023-38289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38289"
},
{
"name": "CVE-2018-20677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20677"
},
{
"name": "CVE-2010-1205",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1205"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"name": "CVE-2015-7182",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7182"
},
{
"name": "CVE-2022-23990",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23990"
},
{
"name": "CVE-2018-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16335"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-29131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29131"
},
{
"name": "CVE-2021-36770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36770"
},
{
"name": "CVE-2020-19144",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19144"
},
{
"name": "CVE-2023-3164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3164"
},
{
"name": "CVE-2022-3597",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3597"
},
{
"name": "CVE-2024-27983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27983"
},
{
"name": "CVE-2017-12627",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12627"
},
{
"name": "CVE-2018-17101",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17101"
},
{
"name": "CVE-2023-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50291"
},
{
"name": "CVE-2014-1568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1568"
},
{
"name": "CVE-2020-26261",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26261"
},
{
"name": "CVE-2023-24816",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24816"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2023-0801",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0801"
},
{
"name": "CVE-2022-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4645"
},
{
"name": "CVE-2019-17546",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17546"
},
{
"name": "CVE-2022-2869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2869"
},
{
"name": "CVE-2022-3479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3479"
},
{
"name": "CVE-2023-40745",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40745"
},
{
"name": "CVE-2024-27982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27982"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2020-15110",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15110"
},
{
"name": "CVE-2023-25435",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25435"
},
{
"name": "CVE-2024-37372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37372"
},
{
"name": "CVE-2021-38153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38153"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2024-29133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29133"
},
{
"name": "CVE-2017-18869",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18869"
},
{
"name": "CVE-2022-0562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0562"
},
{
"name": "CVE-2023-38325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38325"
},
{
"name": "CVE-2019-11719",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11719"
},
{
"name": "CVE-2022-0891",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0891"
},
{
"name": "CVE-2018-7456",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7456"
},
{
"name": "CVE-2023-38288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38288"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2023-0799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0799"
},
{
"name": "CVE-2019-17006",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17006"
},
{
"name": "CVE-2020-12403",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12403"
},
{
"name": "CVE-2023-6237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
},
{
"name": "CVE-2023-6228",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6228"
},
{
"name": "CVE-2021-46848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46848"
},
{
"name": "CVE-2023-2650",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2650"
},
{
"name": "CVE-2023-0795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0795"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2023-50495",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50495"
},
{
"name": "CVE-2017-18013",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18013"
},
{
"name": "CVE-2023-25194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25194"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2016-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1938"
},
{
"name": "CVE-2017-11698",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11698"
},
{
"name": "CVE-2022-22827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22827"
},
{
"name": "CVE-2024-38337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38337"
},
{
"name": "CVE-2018-12384",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12384"
},
{
"name": "CVE-2018-12404",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12404"
},
{
"name": "CVE-2019-14973",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14973"
},
{
"name": "CVE-2020-36191",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36191"
},
{
"name": "CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"name": "CVE-2023-0804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0804"
},
{
"name": "CVE-2023-30775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30775"
},
{
"name": "CVE-2023-0797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0797"
},
{
"name": "CVE-2018-14041",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14041"
},
{
"name": "CVE-2023-1916",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1916"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2020-19131",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19131"
},
{
"name": "CVE-2015-7575",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7575"
},
{
"name": "CVE-2023-41175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41175"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2018-5784",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5784"
},
{
"name": "CVE-2018-17000",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17000"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2023-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3576"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2020-35523",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35523"
},
{
"name": "CVE-2016-10735",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10735"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2022-34749",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34749"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2020-19189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19189"
},
{
"name": "CVE-2022-0908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0908"
},
{
"name": "CVE-2023-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49083"
},
{
"name": "CVE-2024-36114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36114"
},
{
"name": "CVE-2019-11745",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11745"
},
{
"name": "CVE-2019-11729",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11729"
},
{
"name": "CVE-2024-34102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34102"
},
{
"name": "CVE-2019-11756",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11756"
},
{
"name": "CVE-2021-32862",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32862"
},
{
"name": "CVE-2022-22826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22826"
},
{
"name": "CVE-2024-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4367"
},
{
"name": "CVE-2024-25016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25016"
},
{
"name": "CVE-2022-40090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40090"
},
{
"name": "CVE-2023-25434",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25434"
},
{
"name": "CVE-2024-29896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29896"
},
{
"name": "CVE-2015-7181",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7181"
},
{
"name": "CVE-2020-18768",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-18768"
},
{
"name": "CVE-2022-34526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34526"
},
{
"name": "CVE-2022-2868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2868"
},
{
"name": "CVE-2017-5461",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5461"
},
{
"name": "CVE-2014-1569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1569"
},
{
"name": "CVE-2020-12400",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12400"
},
{
"name": "CVE-2023-31130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31130"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2023-32681",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32681"
},
{
"name": "CVE-2017-11695",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11695"
},
{
"name": "CVE-2023-2908",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2908"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2022-22824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22824"
},
{
"name": "CVE-2020-6829",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6829"
},
{
"name": "CVE-2017-11697",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11697"
},
{
"name": "CVE-2023-0800",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0800"
},
{
"name": "CVE-2023-5388",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5388"
},
{
"name": "CVE-2024-27980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27980"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2024-51504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51504"
},
{
"name": "CVE-2018-19210",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19210"
},
{
"name": "CVE-2013-2099",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2099"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2019-10255",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10255"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"name": "CVE-2020-35524",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35524"
},
{
"name": "CVE-2019-8331",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8331"
},
{
"name": "CVE-2024-36137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36137"
},
{
"name": "CVE-2020-35522",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35522"
},
{
"name": "CVE-2022-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3570"
},
{
"name": "CVE-2017-11696",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11696"
},
{
"name": "CVE-2022-0561",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0561"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-1103",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-20T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177142",
"url": "https://www.ibm.com/support/pages/node/7177142"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177223",
"url": "https://www.ibm.com/support/pages/node/7177223"
},
{
"published_at": "2024-12-16",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179044",
"url": "https://www.ibm.com/support/pages/node/7179044"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179156",
"url": "https://www.ibm.com/support/pages/node/7179156"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179166",
"url": "https://www.ibm.com/support/pages/node/7179166"
},
{
"published_at": "2024-12-13",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178835",
"url": "https://www.ibm.com/support/pages/node/7178835"
}
]
}
CERTFR-2024-AVI-1051
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | VIOS | VIOS version 3.1 sans le correctif invscout_fix7.tar | ||
| IBM | AIX | AIX version 7.3 sans le correctif invscout_fix7.tar | ||
| IBM | Cognos Controller | Cognos Controller versions 11.0.x antérieures à 11.0.1 FP3 | ||
| IBM | AIX | AIX version 7.2 sans le correctif invscout_fix7.tar | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.x antérieures à 6.2.2.2 | ||
| IBM | QRadar Use Case Manager App | QRadar Use Case Manager App versions antérieures à 4.0.0 | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.1.x antérieures à 6.1.2.10 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.1.x antérieures à 6.1.2.10 | ||
| IBM | VIOS | VIOS version 4.1 sans le correctif invscout_fix7.tar | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.x antérieures à 6.2.3.2 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "VIOS version 3.1 sans le correctif invscout_fix7.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 sans le correctif invscout_fix7.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Controller versions 11.0.x ant\u00e9rieures \u00e0 11.0.1 FP3",
"product": {
"name": "Cognos Controller",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.2 sans le correctif invscout_fix7.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.x ant\u00e9rieures \u00e0 6.2.2.2",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Use Case Manager App versions ant\u00e9rieures \u00e0 4.0.0",
"product": {
"name": "QRadar Use Case Manager App",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.1.x ant\u00e9rieures \u00e0 6.1.2.10",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.1.x ant\u00e9rieures \u00e0 6.1.2.10",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 sans le correctif invscout_fix7.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.x ant\u00e9rieures \u00e0 6.2.3.2",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-20919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-21938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
},
{
"name": "CVE-2023-21843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21843"
},
{
"name": "CVE-2024-47115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47115"
},
{
"name": "CVE-2021-29425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29425"
},
{
"name": "CVE-2022-32213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32213"
},
{
"name": "CVE-2021-22959",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22959"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-25020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25020"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2022-35256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35256"
},
{
"name": "CVE-2023-21954",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21954"
},
{
"name": "CVE-2023-21939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
},
{
"name": "CVE-2024-20926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
},
{
"name": "CVE-2024-22353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22353"
},
{
"name": "CVE-2024-41777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41777"
},
{
"name": "CVE-2024-21890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21890"
},
{
"name": "CVE-2024-21896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21896"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2021-36690",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36690"
},
{
"name": "CVE-2023-21830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21830"
},
{
"name": "CVE-2021-22940",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22940"
},
{
"name": "CVE-2023-23936",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23936"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2021-22930",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22930"
},
{
"name": "CVE-2024-25035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25035"
},
{
"name": "CVE-2024-20921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
},
{
"name": "CVE-2023-38737",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38737"
},
{
"name": "CVE-2023-24807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24807"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2021-22918",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22918"
},
{
"name": "CVE-2023-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22081"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2021-22939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22939"
},
{
"name": "CVE-2021-44532",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44532"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2022-0155",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0155"
},
{
"name": "CVE-2021-22960",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22960"
},
{
"name": "CVE-2024-41776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41776"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-25019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25019"
},
{
"name": "CVE-2022-32222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32222"
},
{
"name": "CVE-2023-22067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22067"
},
{
"name": "CVE-2022-32212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32212"
},
{
"name": "CVE-2023-23920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23920"
},
{
"name": "CVE-2024-21634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21634"
},
{
"name": "CVE-2023-23918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23918"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2021-22921",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22921"
},
{
"name": "CVE-2022-0536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0536"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2021-29892",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29892"
},
{
"name": "CVE-2024-45676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45676"
},
{
"name": "CVE-2023-49735",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49735"
},
{
"name": "CVE-2024-40691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40691"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2023-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
},
{
"name": "CVE-2024-27268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27268"
},
{
"name": "CVE-2022-32215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32215"
},
{
"name": "CVE-2023-33850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33850"
},
{
"name": "CVE-2023-2597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
},
{
"name": "CVE-2023-22045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22045"
},
{
"name": "CVE-2024-41775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41775"
},
{
"name": "CVE-2023-22049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22049"
},
{
"name": "CVE-2023-23919",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23919"
},
{
"name": "CVE-2020-28500",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28500"
},
{
"name": "CVE-2021-22931",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22931"
},
{
"name": "CVE-2023-44483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44483"
},
{
"name": "CVE-2021-44533",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44533"
},
{
"name": "CVE-2023-5676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5676"
},
{
"name": "CVE-2022-35737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35737"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2020-8203",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8203"
},
{
"name": "CVE-2022-25857",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25857"
},
{
"name": "CVE-2024-27270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27270"
},
{
"name": "CVE-2024-21891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21891"
},
{
"name": "CVE-2023-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
},
{
"name": "CVE-2022-32214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32214"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2022-21824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21824"
},
{
"name": "CVE-2023-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
},
{
"name": "CVE-2024-22017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22017"
},
{
"name": "CVE-2023-24998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24998"
},
{
"name": "CVE-2024-20918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
},
{
"name": "CVE-2022-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35255"
},
{
"name": "CVE-2024-25036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25036"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2021-44531",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44531"
},
{
"name": "CVE-2024-20945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
},
{
"name": "CVE-2023-39332",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39332"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2023-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21967"
},
{
"name": "CVE-2022-32223",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32223"
},
{
"name": "CVE-2023-26159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26159"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-1051",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-06T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178033",
"url": "https://www.ibm.com/support/pages/node/7178033"
},
{
"published_at": "2024-12-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178054",
"url": "https://www.ibm.com/support/pages/node/7178054"
},
{
"published_at": "2024-12-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177220",
"url": "https://www.ibm.com/support/pages/node/7177220"
},
{
"published_at": "2024-12-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177981",
"url": "https://www.ibm.com/support/pages/node/7177981"
}
]
}
CERTFR-2024-AVI-1103
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Analytics | Cognos Analytics versions 12.0.x antérieures à 12.0.4 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.0.x antérieures à 6.1.0.2 ifix 01 | ||
| IBM | QRadar SIEM | Security QRadar Log Management AQL Plugin versions antérieures à 1.1.0 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.0.x antérieures à 6.0.3.1 (fixpack) GA | ||
| IBM | Cognos Analytics | Cognos Analytics versions 11.2.x antérieures à 11.2.4 FP5 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.x antérieures à 6.1.0.1 (fixpack) GA | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.x antérieures à 6.2.0.0 ifix 01 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.x antérieures à 6.3.0.11_ifix001 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Analytics versions 12.0.x ant\u00e9rieures \u00e0 12.0.4",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.2 ifix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": " Security QRadar Log Management AQL Plugin versions ant\u00e9rieures \u00e0 1.1.0",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.0.x ant\u00e9rieures \u00e0 6.0.3.1 (fixpack) GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Analytics versions 11.2.x ant\u00e9rieures \u00e0 11.2.4 FP5",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.1 (fixpack) GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.0 ifix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.11_ifix001",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2017-9937",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9937"
},
{
"name": "CVE-2023-52356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52356"
},
{
"name": "CVE-2023-41334",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41334"
},
{
"name": "CVE-2023-37536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37536"
},
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2024-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22871"
},
{
"name": "CVE-2024-7006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7006"
},
{
"name": "CVE-2023-3316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3316"
},
{
"name": "CVE-2024-36138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36138"
},
{
"name": "CVE-2018-14042",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14042"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2021-45960",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45960"
},
{
"name": "CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"name": "CVE-2022-3626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3626"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-22201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22201"
},
{
"name": "CVE-2020-12401",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12401"
},
{
"name": "CVE-2018-15209",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15209"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2018-17100",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17100"
},
{
"name": "CVE-2022-3599",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3599"
},
{
"name": "CVE-2022-34266",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34266"
},
{
"name": "CVE-2020-35521",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35521"
},
{
"name": "CVE-2023-0796",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0796"
},
{
"name": "CVE-2023-50386",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50386"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-23944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23944"
},
{
"name": "CVE-2022-48554",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48554"
},
{
"name": "CVE-2024-39008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39008"
},
{
"name": "CVE-2018-14040",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14040"
},
{
"name": "CVE-2024-28757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28757"
},
{
"name": "CVE-2023-30086",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30086"
},
{
"name": "CVE-2019-11727",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11727"
},
{
"name": "CVE-2024-25638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25638"
},
{
"name": "CVE-2022-2057",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2057"
},
{
"name": "CVE-2019-6128",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6128"
},
{
"name": "CVE-2023-26965",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26965"
},
{
"name": "CVE-2022-22823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22823"
},
{
"name": "CVE-2023-52426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52426"
},
{
"name": "CVE-2022-2058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2058"
},
{
"name": "CVE-2024-45082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45082"
},
{
"name": "CVE-2023-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50782"
},
{
"name": "CVE-2022-3627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3627"
},
{
"name": "CVE-2022-2867",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2867"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-32067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32067"
},
{
"name": "CVE-2022-3598",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3598"
},
{
"name": "CVE-2023-0798",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0798"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2023-2731",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2731"
},
{
"name": "CVE-2023-0803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0803"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30774"
},
{
"name": "CVE-2023-4759",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4759"
},
{
"name": "CVE-2017-11613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11613"
},
{
"name": "CVE-2017-12652",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12652"
},
{
"name": "CVE-2024-41752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41752"
},
{
"name": "CVE-2023-50447",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50447"
},
{
"name": "CVE-2018-18508",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18508"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-33883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33883"
},
{
"name": "CVE-2022-40897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40897"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2022-22844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22844"
},
{
"name": "CVE-2014-1544",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1544"
},
{
"name": "CVE-2023-4421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4421"
},
{
"name": "CVE-2023-6277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6277"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2023-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50298"
},
{
"name": "CVE-2024-25629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25629"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2023-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50292"
},
{
"name": "CVE-2018-20676",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20676"
},
{
"name": "CVE-2023-0802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0802"
},
{
"name": "CVE-2022-2056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2056"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2021-43138",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43138"
},
{
"name": "CVE-2020-25648",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25648"
},
{
"name": "CVE-2019-17023",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17023"
},
{
"name": "CVE-2022-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21699"
},
{
"name": "CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"name": "CVE-2019-7317",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7317"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2019-17007",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17007"
},
{
"name": "CVE-2023-0767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0767"
},
{
"name": "CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"name": "CVE-2022-23852",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23852"
},
{
"name": "CVE-2022-22825",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22825"
},
{
"name": "CVE-2023-38289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38289"
},
{
"name": "CVE-2018-20677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20677"
},
{
"name": "CVE-2010-1205",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1205"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"name": "CVE-2015-7182",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7182"
},
{
"name": "CVE-2022-23990",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23990"
},
{
"name": "CVE-2018-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16335"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-29131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29131"
},
{
"name": "CVE-2021-36770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36770"
},
{
"name": "CVE-2020-19144",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19144"
},
{
"name": "CVE-2023-3164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3164"
},
{
"name": "CVE-2022-3597",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3597"
},
{
"name": "CVE-2024-27983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27983"
},
{
"name": "CVE-2017-12627",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12627"
},
{
"name": "CVE-2018-17101",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17101"
},
{
"name": "CVE-2023-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50291"
},
{
"name": "CVE-2014-1568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1568"
},
{
"name": "CVE-2020-26261",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26261"
},
{
"name": "CVE-2023-24816",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24816"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2023-0801",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0801"
},
{
"name": "CVE-2022-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4645"
},
{
"name": "CVE-2019-17546",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17546"
},
{
"name": "CVE-2022-2869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2869"
},
{
"name": "CVE-2022-3479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3479"
},
{
"name": "CVE-2023-40745",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40745"
},
{
"name": "CVE-2024-27982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27982"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2020-15110",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15110"
},
{
"name": "CVE-2023-25435",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25435"
},
{
"name": "CVE-2024-37372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37372"
},
{
"name": "CVE-2021-38153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38153"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2024-29133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29133"
},
{
"name": "CVE-2017-18869",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18869"
},
{
"name": "CVE-2022-0562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0562"
},
{
"name": "CVE-2023-38325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38325"
},
{
"name": "CVE-2019-11719",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11719"
},
{
"name": "CVE-2022-0891",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0891"
},
{
"name": "CVE-2018-7456",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7456"
},
{
"name": "CVE-2023-38288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38288"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2023-0799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0799"
},
{
"name": "CVE-2019-17006",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17006"
},
{
"name": "CVE-2020-12403",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12403"
},
{
"name": "CVE-2023-6237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
},
{
"name": "CVE-2023-6228",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6228"
},
{
"name": "CVE-2021-46848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46848"
},
{
"name": "CVE-2023-2650",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2650"
},
{
"name": "CVE-2023-0795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0795"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2023-50495",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50495"
},
{
"name": "CVE-2017-18013",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18013"
},
{
"name": "CVE-2023-25194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25194"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2016-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1938"
},
{
"name": "CVE-2017-11698",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11698"
},
{
"name": "CVE-2022-22827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22827"
},
{
"name": "CVE-2024-38337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38337"
},
{
"name": "CVE-2018-12384",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12384"
},
{
"name": "CVE-2018-12404",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12404"
},
{
"name": "CVE-2019-14973",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14973"
},
{
"name": "CVE-2020-36191",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36191"
},
{
"name": "CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"name": "CVE-2023-0804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0804"
},
{
"name": "CVE-2023-30775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30775"
},
{
"name": "CVE-2023-0797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0797"
},
{
"name": "CVE-2018-14041",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14041"
},
{
"name": "CVE-2023-1916",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1916"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2020-19131",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19131"
},
{
"name": "CVE-2015-7575",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7575"
},
{
"name": "CVE-2023-41175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41175"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2018-5784",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5784"
},
{
"name": "CVE-2018-17000",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17000"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2023-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3576"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2020-35523",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35523"
},
{
"name": "CVE-2016-10735",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10735"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2022-34749",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34749"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2020-19189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19189"
},
{
"name": "CVE-2022-0908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0908"
},
{
"name": "CVE-2023-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49083"
},
{
"name": "CVE-2024-36114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36114"
},
{
"name": "CVE-2019-11745",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11745"
},
{
"name": "CVE-2019-11729",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11729"
},
{
"name": "CVE-2024-34102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34102"
},
{
"name": "CVE-2019-11756",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11756"
},
{
"name": "CVE-2021-32862",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32862"
},
{
"name": "CVE-2022-22826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22826"
},
{
"name": "CVE-2024-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4367"
},
{
"name": "CVE-2024-25016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25016"
},
{
"name": "CVE-2022-40090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40090"
},
{
"name": "CVE-2023-25434",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25434"
},
{
"name": "CVE-2024-29896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29896"
},
{
"name": "CVE-2015-7181",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7181"
},
{
"name": "CVE-2020-18768",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-18768"
},
{
"name": "CVE-2022-34526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34526"
},
{
"name": "CVE-2022-2868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2868"
},
{
"name": "CVE-2017-5461",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5461"
},
{
"name": "CVE-2014-1569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1569"
},
{
"name": "CVE-2020-12400",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12400"
},
{
"name": "CVE-2023-31130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31130"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2023-32681",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32681"
},
{
"name": "CVE-2017-11695",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11695"
},
{
"name": "CVE-2023-2908",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2908"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2022-22824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22824"
},
{
"name": "CVE-2020-6829",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6829"
},
{
"name": "CVE-2017-11697",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11697"
},
{
"name": "CVE-2023-0800",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0800"
},
{
"name": "CVE-2023-5388",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5388"
},
{
"name": "CVE-2024-27980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27980"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2024-51504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51504"
},
{
"name": "CVE-2018-19210",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19210"
},
{
"name": "CVE-2013-2099",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2099"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2019-10255",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10255"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"name": "CVE-2020-35524",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35524"
},
{
"name": "CVE-2019-8331",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8331"
},
{
"name": "CVE-2024-36137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36137"
},
{
"name": "CVE-2020-35522",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35522"
},
{
"name": "CVE-2022-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3570"
},
{
"name": "CVE-2017-11696",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11696"
},
{
"name": "CVE-2022-0561",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0561"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-1103",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-20T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177142",
"url": "https://www.ibm.com/support/pages/node/7177142"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177223",
"url": "https://www.ibm.com/support/pages/node/7177223"
},
{
"published_at": "2024-12-16",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179044",
"url": "https://www.ibm.com/support/pages/node/7179044"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179156",
"url": "https://www.ibm.com/support/pages/node/7179156"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179166",
"url": "https://www.ibm.com/support/pages/node/7179166"
},
{
"published_at": "2024-12-13",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178835",
"url": "https://www.ibm.com/support/pages/node/7178835"
}
]
}
CERTFR-2024-AVI-0630
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans IBM QRadar. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar Pulse App versions ant\u00e9rieures \u00e0 2.2.14",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Data Synchronization App versions ant\u00e9rieures \u00e0 3.2.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Network Packet Capture versions 7.5.0 ant\u00e9rieures \u00e0 7.5.0 Update Package 8",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2018-3721",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3721"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2021-23364",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23364"
},
{
"name": "CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2023-3817",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3817"
},
{
"name": "CVE-2021-23436",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23436"
},
{
"name": "CVE-2022-37603",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37603"
},
{
"name": "CVE-2023-36632",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36632"
},
{
"name": "CVE-2022-25883",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25883"
},
{
"name": "CVE-2024-29415",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29415"
},
{
"name": "CVE-2023-45133",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45133"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2016-10540",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10540"
},
{
"name": "CVE-2020-28477",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28477"
},
{
"name": "CVE-2023-5981",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5981"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2022-43441",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43441"
},
{
"name": "CVE-2021-43138",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43138"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2023-0842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0842"
},
{
"name": "CVE-2024-27983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27983"
},
{
"name": "CVE-2022-37601",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37601"
},
{
"name": "CVE-2024-27982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27982"
},
{
"name": "CVE-2023-3341",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3341"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2024-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0553"
},
{
"name": "CVE-2023-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3609"
},
{
"name": "CVE-2022-3517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3517"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-27088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27088"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2022-25881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25881"
},
{
"name": "CVE-2021-24033",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-24033"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-31905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31905"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2018-16487",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16487"
},
{
"name": "CVE-2021-42740",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42740"
},
{
"name": "CVE-2016-10538",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10538"
},
{
"name": "CVE-2023-35001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35001"
},
{
"name": "CVE-2024-28835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28835"
},
{
"name": "CVE-2023-32233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32233"
},
{
"name": "CVE-2023-42282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42282"
},
{
"name": "CVE-2023-39615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39615"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2023-0361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0361"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0567"
},
{
"name": "CVE-2021-3757",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3757"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0630",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-07-26T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans IBM QRadar. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM QRadar",
"vendor_advisories": [
{
"published_at": "2024-07-24",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161462",
"url": "https://www.ibm.com/support/pages/node/7161462"
},
{
"published_at": "2024-07-23",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160961",
"url": "https://www.ibm.com/support/pages/node/7160961"
},
{
"published_at": "2024-07-22",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160858",
"url": "https://www.ibm.com/support/pages/node/7160858"
}
]
}
RHSA-2024:7164
Vulnerability from csaf_redhat - Published: 2024-09-26 03:46 - Updated: 2025-12-04 05:05Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.4 security and bug fix update
Notes
Topic
The Migration Toolkit for Containers (MTC) 1.8.4 is now available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)
* webpack-dev-middleware: lack of URL validation may lead to file leak (CVE-2024-29180)
* express: cause malformed URLs to be evaluated (CVE-2024-29041)
* axios: axios: Server-Side Request Forgery (CVE-2024-39338)
* golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect (CVE-2023-45289)
* jose-go: improper handling of highly compressed data (CVE-2024-28180)
* follow-redirects: Possible credential leak (CVE-2024-28849)
* moby: external DNS requests from 'internal' networks could lead to data exfiltration (CVE-2024-29018)
* containers/image: digest type does not guarantee valid type (CVE-2024-3727)
* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)
* braces: fails to limit the number of characters it can handle (CVE-2024-4068)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.4 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)\n\n* webpack-dev-middleware: lack of URL validation may lead to file leak (CVE-2024-29180)\n\n* express: cause malformed URLs to be evaluated (CVE-2024-29041)\n\n* axios: axios: Server-Side Request Forgery (CVE-2024-39338)\n\n* golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect (CVE-2023-45289)\n\n* jose-go: improper handling of highly compressed data (CVE-2024-28180)\n\n* follow-redirects: Possible credential leak (CVE-2024-28849)\n\n* moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration (CVE-2024-29018)\n\n* containers/image: digest type does not guarantee valid type (CVE-2024-3727)\n\n* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)\n\n* braces: fails to limit the number of characters it can handle (CVE-2024-4068)\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7164",
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2268018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268018"
},
{
"category": "external",
"summary": "2268273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268273"
},
{
"category": "external",
"summary": "2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "2269576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269576"
},
{
"category": "external",
"summary": "2270591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270591"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2274767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"category": "external",
"summary": "2279814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279814"
},
{
"category": "external",
"summary": "2280600",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280600"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2295302",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295302"
},
{
"category": "external",
"summary": "2299624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299624"
},
{
"category": "external",
"summary": "2299625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299625"
},
{
"category": "external",
"summary": "2299628",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299628"
},
{
"category": "external",
"summary": "2299668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299668"
},
{
"category": "external",
"summary": "MIG-1592",
"url": "https://issues.redhat.com/browse/MIG-1592"
},
{
"category": "external",
"summary": "MIG-1593",
"url": "https://issues.redhat.com/browse/MIG-1593"
},
{
"category": "external",
"summary": "MIG-1598",
"url": "https://issues.redhat.com/browse/MIG-1598"
},
{
"category": "external",
"summary": "MIG-1610",
"url": "https://issues.redhat.com/browse/MIG-1610"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7164.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.4 security and bug fix update",
"tracking": {
"current_release_date": "2025-12-04T05:05:25+00:00",
"generator": {
"date": "2025-12-04T05:05:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.13"
}
},
"id": "RHSA-2024:7164",
"initial_release_date": "2024-09-26T03:46:53+00:00",
"revision_history": [
{
"date": "2024-09-26T03:46:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-26T03:46:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-12-04T05:05:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.4-22"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.4-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.4-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.4-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.4-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.4-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.4-33"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.4-11"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.4-9"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.4-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.4-9"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25211",
"cwe": {
"id": "CWE-346",
"name": "Origin Validation Error"
},
"discovery_date": "2024-07-02T21:00:45+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295302"
}
],
"notes": [
{
"category": "description",
"text": "parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandles a wildcard at the end of an origin string, e.g., https://example.community/* is allowed when the intention is that only https://example.com/* should be allowed, and http://localhost.example.com/* is allowed when the intention is that only http://localhost/* should be allowed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/gin-contrib/cors: Gin mishandles a wildcard in the origin string in github.com/gin-contrib/cors",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25211"
},
{
"category": "external",
"summary": "RHBZ#2295302",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295302"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25211",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25211"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25211",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25211"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-869c-j7wc-8jqv",
"url": "https://github.com/advisories/GHSA-869c-j7wc-8jqv"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/commit/27b723a473efd80d5a498fa9f5933c80204c850d",
"url": "https://github.com/gin-contrib/cors/commit/27b723a473efd80d5a498fa9f5933c80204c850d"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/compare/v1.5.0...v1.6.0",
"url": "https://github.com/gin-contrib/cors/compare/v1.5.0...v1.6.0"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/pull/106",
"url": "https://github.com/gin-contrib/cors/pull/106"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/pull/57",
"url": "https://github.com/gin-contrib/cors/pull/57"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/releases/tag/v1.6.0",
"url": "https://github.com/gin-contrib/cors/releases/tag/v1.6.0"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "github.com/gin-contrib/cors: Gin mishandles a wildcard in the origin string in github.com/gin-contrib/cors"
},
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2023-45288",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268273"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was discovered with the implementation of the HTTP/2 protocol in the Go programming language. There were insufficient limitations on the amount of CONTINUATION frames sent within a single stream. An attacker could potentially exploit this to cause a Denial of Service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Important due to the worst case scenario resulting in a denial of service. It is simple to exploit, could significantly impact availability, and there is not a suitable mitigation for all use cases. Once an attack has ended, the system should return to normal operations on its own.\n\nThis vulnerability only impacts servers which have HTTP/2 enabled. It stems from an imperfect definition of the protocol. As the Go programming language is widely utilized across nearly every major Red Hat offering, a full listing of impacted packages will not be provided. Therefore, the \u201cAffected Packages and Issued Red Hat Security Errata\u201d section contains a simplified list of what offerings need to remediate this vulnerability. Every impacted offering has at least one representative component listed, but potentially not all of them. Rest assured that Red Hat is committed to remediating this vulnerability across our entire portfolio.\n\nMany components are rated as Low impact due to configurations which reduce the attack surface or significantly increase the difficulty of exploitation. A summary of these scenarios are:\n* The container includes a package that provides a vulnerable webserver, but it is not used or running during operation\n* HTTP/2 is disabled by default and is not supported\n* Only a client implementation is provided, which is not vulnerable\n* A vulnerable module (either golang.org/net/http or golang.org/x/net/http2) is included, but disabled\n* Access to a vulnerable server is restricted within the container (loopback only connections)\n* Golang is available in the container but is not used\n\n\nWithin the Red Hat OpenShift Container Platform, the majority of vulnerable components are not externally accessible. This means an attacker must already have access to a container within your environment to exploit this vulnerability. However, the ose-hyperkube (openshift-enterprise-hyperkube) container is externally accessible, so there are less barriers to exploitation. Fixes for this specific container are already available.\n\nWithin Red Hat Ansible Automation Platform, the impacted component is Receptor. The impact has been reduced to Low as the vulnerable code is present, but not utilized. There are three potential exposures within this component:\n* Receptor utilizes QUIC a UDP based protocol which does not run over HTTP/2\n* Receptor utilizes the x/net/ipv4 and ipv6 packages, both of which are not affected",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "RHBZ#2268273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268273"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2687",
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "In some environments where http/2 support is not required, it may be possible to disable this feature to reduce risk.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS"
},
{
"cve": "CVE-2023-45289",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-03-05T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268018"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s net/http/cookiejar standard library package. When following an HTTP redirect to a domain that is not a subdomain match or an exact match of the initial domain, an http.Client does not forward sensitive headers such as \"Authorization\" or \"Cookie\". For example, a redirect from foo.com to www.foo.com will forward the Authorization header, but a redirect to bar.com will not. A maliciously crafted HTTP redirect could cause sensitive headers to be unexpectedly forwarded.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nAccess to the platform is granted only after successful hard token, multi-factor authentication (MFA), which is coupled with account management controls, including integration with single sign-on (SSO), to ensure that user permissions are restricted to only the functions necessary for their roles. Access to sensitive information is explicitly authorized and enforced based on predefined access policies. Event logs are collected and processed for centralization, correlation, analysis, monitoring, reporting, alerting, and retention. This process ensures that audit logs are generated for specific events involving sensitive information, which helps identify patterns of unauthorized access or data exposure. The platform enforces the use of validated cryptographic modules across compute resources to protect the confidentiality of information, even in the event of interception.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45289"
},
{
"category": "external",
"summary": "RHBZ#2268018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268018"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45289"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45289",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45289"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect"
},
{
"cve": "CVE-2024-3727",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"discovery_date": "2024-04-12T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2274767"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "containers/image: digest type does not guarantee valid type",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Some conditions are necessary for this attack to occur, such as the attacker being able to upload malicious images to the registry and persuade a victim to pull them. Hence, the severity of this flaw was rated as Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "RHBZ#2274767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-3727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727"
}
],
"release_date": "2024-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "containers/image: digest type does not guarantee valid type"
},
{
"cve": "CVE-2024-4068",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280600"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `braces.` It fails to limit the number of characters it can handle, which could lead to memory exhaustion. In `lib/parse.js,` if a malicious user sends \"imbalanced braces\" as input, the parsing will enter a loop, causing the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "braces: fails to limit the number of characters it can handle",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4068"
},
{
"category": "external",
"summary": "RHBZ#2280600",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280600"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308",
"url": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/issues/35",
"url": "https://github.com/micromatch/braces/issues/35"
}
],
"release_date": "2024-03-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "braces: fails to limit the number of characters it can handle"
},
{
"cve": "CVE-2024-24788",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-05-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279814"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service (DoS) conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net: malformed DNS message can cause infinite loop",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to ensure the most restrictive setting needed for operational requirements. Event logs are collected and processed for centralization, correlation, analysis, monitoring, reporting, alerting, and retention. This process ensures that audit logs are generated for specific events involving sensitive information, enabling capabilities like excessive CPU usage, long execution times, or processes consuming abnormal amounts of memory. Static code analysis and peer code review techniques are used to execute robust input validation and error-handling mechanisms to ensure all user inputs are thoroughly validated, preventing infinite loops caused by malformed or unexpected input, such as unbounded user input or unexpected null values that cause loops to never terminate. In the event of successful exploitation, process isolation limits the effect of an infinite loop to a single process rather than allowing it to consume all system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24788"
},
{
"category": "external",
"summary": "RHBZ#2279814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279814"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24788"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2824",
"url": "https://pkg.go.dev/vuln/GO-2024-2824"
}
],
"release_date": "2024-05-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net: malformed DNS message can cause infinite loop"
},
{
"cve": "CVE-2024-28180",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268854"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose-go: improper handling of highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "RHBZ#2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose-go: improper handling of highly compressed data"
},
{
"cve": "CVE-2024-28849",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-03-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2269576"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the follow-redirects package. While processing the cross-domain redirection, `follow-redirects` clears authorization headers, however, it misses clearing proxy-authentication headers, which contain credentials as well. This issue may lead to credential leaking, having a high impact on data confidentiality.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "follow-redirects: Possible credential leak",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28849"
},
{
"category": "external",
"summary": "RHBZ#2269576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269576"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28849",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28849"
},
{
"category": "external",
"summary": "https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-cxjh-pqwp-8mfp",
"url": "https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-cxjh-pqwp-8mfp"
}
],
"release_date": "2024-03-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "follow-redirects: Possible credential leak"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-29018",
"cwe": {
"id": "CWE-669",
"name": "Incorrect Resource Transfer Between Spheres"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270591"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Moby due to excessive data output in external DNS requests from \"internal\" networks, enabling unauthorized access to sensitive system information by remote attackers. This flaw allows attackers to gain access to sensitive information by exploiting incorrect resource transfer between spheres through specially crafted requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29018"
},
{
"category": "external",
"summary": "RHBZ#2270591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270591"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29018"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29018",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29018"
},
{
"category": "external",
"summary": "https://github.com/moby/moby/pull/46609",
"url": "https://github.com/moby/moby/pull/46609"
},
{
"category": "external",
"summary": "https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx",
"url": "https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
}
]
}
RHSA-2024:4591
Vulnerability from csaf_redhat - Published: 2024-07-17 13:09 - Updated: 2025-12-03 23:59Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement & bug fix update
Notes
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.16.0 on Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.
Security Fix(es):
* get-func-name: ReDoS in chai module (CVE-2023-43646)
* opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics (CVE-2023-47108)
* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
* golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm (CVE-2024-24783)
* golang: html/template: errors returned from MarshalJSON methods may break template escaping (CVE-2024-24785)
* golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON (CVE-2024-24786)
* jose: resource exhaustion (CVE-2024-28176)
* jose-go: improper handling of highly compressed data (CVE-2024-28180)
* submariner-operator: RBAC permissions can allow for the spread of node compromises (CVE-2024-5042)
* nodejs-ws: denial of service when handling a request with many HTTP headers (CVE-2024-37890)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
These updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:
https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.16/html/4.16_release_notes/index
All Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.16.0 on Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.\n\nSecurity Fix(es):\n\n* get-func-name: ReDoS in chai module (CVE-2023-43646)\n\n* opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics (CVE-2023-47108)\n\n* golang-fips\u0026#x2F;openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n\n* golang: crypto\u0026#x2F;x509: Verify panics on certificates with an unknown public key algorithm (CVE-2024-24783)\n\n* golang: html\u0026#x2F;template: errors returned from MarshalJSON methods may break template escaping (CVE-2024-24785)\n\n* golang-protobuf: encoding\u0026#x2F;protojson, internal\u0026#x2F;encoding\u0026#x2F;json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON (CVE-2024-24786)\n\n* jose: resource exhaustion (CVE-2024-28176)\n\n* jose-go: improper handling of highly compressed data (CVE-2024-28180)\n\n* submariner-operator: RBAC permissions can allow for the spread of node compromises (CVE-2024-5042)\n\n* nodejs-ws: denial of service when handling a request with many HTTP headers (CVE-2024-37890)\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\nThese updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.16/html/4.16_release_notes/index\n\nAll Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4591",
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-43646",
"url": "https://access.redhat.com/security/cve/CVE-2023-43646"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-47108",
"url": "https://access.redhat.com/security/cve/CVE-2023-47108"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-1394",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-5042",
"url": "https://access.redhat.com/security/cve/CVE-2024-5042"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24783",
"url": "https://access.redhat.com/security/cve/CVE-2024-24783"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24785",
"url": "https://access.redhat.com/security/cve/CVE-2024-24785"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24786",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28176",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28863",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28180",
"url": "https://access.redhat.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-37890",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "2069759",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069759"
},
{
"category": "external",
"summary": "2078270",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2078270"
},
{
"category": "external",
"summary": "2128142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2128142"
},
{
"category": "external",
"summary": "2132724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2132724"
},
{
"category": "external",
"summary": "2136413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136413"
},
{
"category": "external",
"summary": "2139835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2139835"
},
{
"category": "external",
"summary": "2210040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2210040"
},
{
"category": "external",
"summary": "2214499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214499"
},
{
"category": "external",
"summary": "2214948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214948"
},
{
"category": "external",
"summary": "2215910",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215910"
},
{
"category": "external",
"summary": "2216213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216213"
},
{
"category": "external",
"summary": "2216803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216803"
},
{
"category": "external",
"summary": "2222146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222146"
},
{
"category": "external",
"summary": "2231360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2231360"
},
{
"category": "external",
"summary": "2238308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238308"
},
{
"category": "external",
"summary": "2239587",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2239587"
},
{
"category": "external",
"summary": "2240951",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2240951"
},
{
"category": "external",
"summary": "2241149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241149"
},
{
"category": "external",
"summary": "2242832",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242832"
},
{
"category": "external",
"summary": "2243244",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243244"
},
{
"category": "external",
"summary": "2244353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244353"
},
{
"category": "external",
"summary": "2246186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246186"
},
{
"category": "external",
"summary": "2246364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246364"
},
{
"category": "external",
"summary": "2246834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246834"
},
{
"category": "external",
"summary": "2251022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251022"
},
{
"category": "external",
"summary": "2251198",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251198"
},
{
"category": "external",
"summary": "2251308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251308"
},
{
"category": "external",
"summary": "2252318",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2252318"
},
{
"category": "external",
"summary": "2253043",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253043"
},
{
"category": "external",
"summary": "2253076",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253076"
},
{
"category": "external",
"summary": "2255998",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255998"
},
{
"category": "external",
"summary": "2256563",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256563"
},
{
"category": "external",
"summary": "2256899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256899"
},
{
"category": "external",
"summary": "2257259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257259"
},
{
"category": "external",
"summary": "2257949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257949"
},
{
"category": "external",
"summary": "2258801",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258801"
},
{
"category": "external",
"summary": "2258861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258861"
},
{
"category": "external",
"summary": "2258950",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258950"
},
{
"category": "external",
"summary": "2259195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259195"
},
{
"category": "external",
"summary": "2259209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259209"
},
{
"category": "external",
"summary": "2259616",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259616"
},
{
"category": "external",
"summary": "2259847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259847"
},
{
"category": "external",
"summary": "2260325",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260325"
},
{
"category": "external",
"summary": "2260550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260550"
},
{
"category": "external",
"summary": "2260757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260757"
},
{
"category": "external",
"summary": "2261938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2261938"
},
{
"category": "external",
"summary": "2262134",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262134"
},
{
"category": "external",
"summary": "2262455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262455"
},
{
"category": "external",
"summary": "2262461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262461"
},
{
"category": "external",
"summary": "2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "2262943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262943"
},
{
"category": "external",
"summary": "2262992",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262992"
},
{
"category": "external",
"summary": "2262997",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262997"
},
{
"category": "external",
"summary": "2263148",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263148"
},
{
"category": "external",
"summary": "2263468",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263468"
},
{
"category": "external",
"summary": "2263488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263488"
},
{
"category": "external",
"summary": "2263818",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263818"
},
{
"category": "external",
"summary": "2264435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264435"
},
{
"category": "external",
"summary": "2264480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264480"
},
{
"category": "external",
"summary": "2264767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264767"
},
{
"category": "external",
"summary": "2264900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264900"
},
{
"category": "external",
"summary": "2265340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265340"
},
{
"category": "external",
"summary": "2265492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265492"
},
{
"category": "external",
"summary": "2265562",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265562"
},
{
"category": "external",
"summary": "2266316",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266316"
},
{
"category": "external",
"summary": "2266562",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266562"
},
{
"category": "external",
"summary": "2266621",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266621"
},
{
"category": "external",
"summary": "2266629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266629"
},
{
"category": "external",
"summary": "2266845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266845"
},
{
"category": "external",
"summary": "2266930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266930"
},
{
"category": "external",
"summary": "2267067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267067"
},
{
"category": "external",
"summary": "2267610",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267610"
},
{
"category": "external",
"summary": "2267907",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267907"
},
{
"category": "external",
"summary": "2267965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267965"
},
{
"category": "external",
"summary": "2268019",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268019"
},
{
"category": "external",
"summary": "2268022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268022"
},
{
"category": "external",
"summary": "2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "2268939",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268939"
},
{
"category": "external",
"summary": "2269319",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269319"
},
{
"category": "external",
"summary": "2269354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269354"
},
{
"category": "external",
"summary": "2270064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270064"
},
{
"category": "external",
"summary": "2270446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270446"
},
{
"category": "external",
"summary": "2271593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271593"
},
{
"category": "external",
"summary": "2271804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271804"
},
{
"category": "external",
"summary": "2271921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271921"
},
{
"category": "external",
"summary": "2272386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272386"
},
{
"category": "external",
"summary": "2272469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272469"
},
{
"category": "external",
"summary": "2272528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272528"
},
{
"category": "external",
"summary": "2272644",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272644"
},
{
"category": "external",
"summary": "2272664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272664"
},
{
"category": "external",
"summary": "2272666",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272666"
},
{
"category": "external",
"summary": "2272928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272928"
},
{
"category": "external",
"summary": "2272932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272932"
},
{
"category": "external",
"summary": "2272938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272938"
},
{
"category": "external",
"summary": "2273305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273305"
},
{
"category": "external",
"summary": "2273336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273336"
},
{
"category": "external",
"summary": "2273386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273386"
},
{
"category": "external",
"summary": "2273387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273387"
},
{
"category": "external",
"summary": "2273398",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273398"
},
{
"category": "external",
"summary": "2273533",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273533"
},
{
"category": "external",
"summary": "2273553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273553"
},
{
"category": "external",
"summary": "2273560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273560"
},
{
"category": "external",
"summary": "2273605",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273605"
},
{
"category": "external",
"summary": "2273702",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273702"
},
{
"category": "external",
"summary": "2273705",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273705"
},
{
"category": "external",
"summary": "2274107",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274107"
},
{
"category": "external",
"summary": "2274175",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274175"
},
{
"category": "external",
"summary": "2274193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274193"
},
{
"category": "external",
"summary": "2274324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274324"
},
{
"category": "external",
"summary": "2274373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274373"
},
{
"category": "external",
"summary": "2274381",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274381"
},
{
"category": "external",
"summary": "2274392",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274392"
},
{
"category": "external",
"summary": "2274476",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274476"
},
{
"category": "external",
"summary": "2274548",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274548"
},
{
"category": "external",
"summary": "2274728",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274728"
},
{
"category": "external",
"summary": "2274734",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274734"
},
{
"category": "external",
"summary": "2274750",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274750"
},
{
"category": "external",
"summary": "2274757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274757"
},
{
"category": "external",
"summary": "2274765",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274765"
},
{
"category": "external",
"summary": "2275049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275049"
},
{
"category": "external",
"summary": "2275181",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275181"
},
{
"category": "external",
"summary": "2275222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275222"
},
{
"category": "external",
"summary": "2275254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275254"
},
{
"category": "external",
"summary": "2275413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275413"
},
{
"category": "external",
"summary": "2275456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275456"
},
{
"category": "external",
"summary": "2275484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275484"
},
{
"category": "external",
"summary": "2275886",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275886"
},
{
"category": "external",
"summary": "2275935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275935"
},
{
"category": "external",
"summary": "2276028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276028"
},
{
"category": "external",
"summary": "2276055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276055"
},
{
"category": "external",
"summary": "2276056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276056"
},
{
"category": "external",
"summary": "2276135",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276135"
},
{
"category": "external",
"summary": "2276222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276222"
},
{
"category": "external",
"summary": "2276344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276344"
},
{
"category": "external",
"summary": "2276353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276353"
},
{
"category": "external",
"summary": "2276366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276366"
},
{
"category": "external",
"summary": "2276413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276413"
},
{
"category": "external",
"summary": "2276438",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276438"
},
{
"category": "external",
"summary": "2276591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276591"
},
{
"category": "external",
"summary": "2276593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276593"
},
{
"category": "external",
"summary": "2276694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276694"
},
{
"category": "external",
"summary": "2276913",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276913"
},
{
"category": "external",
"summary": "2276941",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276941"
},
{
"category": "external",
"summary": "2277184",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277184"
},
{
"category": "external",
"summary": "2277186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277186"
},
{
"category": "external",
"summary": "2277711",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277711"
},
{
"category": "external",
"summary": "2277766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277766"
},
{
"category": "external",
"summary": "2277770",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277770"
},
{
"category": "external",
"summary": "2277773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277773"
},
{
"category": "external",
"summary": "2277785",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277785"
},
{
"category": "external",
"summary": "2278120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278120"
},
{
"category": "external",
"summary": "2278389",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278389"
},
{
"category": "external",
"summary": "2278593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278593"
},
{
"category": "external",
"summary": "2278603",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278603"
},
{
"category": "external",
"summary": "2278606",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278606"
},
{
"category": "external",
"summary": "2278676",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278676"
},
{
"category": "external",
"summary": "2278681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278681"
},
{
"category": "external",
"summary": "2278684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278684"
},
{
"category": "external",
"summary": "2278799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278799"
},
{
"category": "external",
"summary": "2278815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278815"
},
{
"category": "external",
"summary": "2279742",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279742"
},
{
"category": "external",
"summary": "2279860",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279860"
},
{
"category": "external",
"summary": "2279928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279928"
},
{
"category": "external",
"summary": "2280342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280342"
},
{
"category": "external",
"summary": "2280378",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280378"
},
{
"category": "external",
"summary": "2280657",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280657"
},
{
"category": "external",
"summary": "2280813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280813"
},
{
"category": "external",
"summary": "2280818",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280818"
},
{
"category": "external",
"summary": "2280820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280820"
},
{
"category": "external",
"summary": "2280834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280834"
},
{
"category": "external",
"summary": "2280921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280921"
},
{
"category": "external",
"summary": "2280946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280946"
},
{
"category": "external",
"summary": "2280953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280953"
},
{
"category": "external",
"summary": "2281580",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281580"
},
{
"category": "external",
"summary": "2281722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281722"
},
{
"category": "external",
"summary": "2281729",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281729"
},
{
"category": "external",
"summary": "2282243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282243"
},
{
"category": "external",
"summary": "2282254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282254"
},
{
"category": "external",
"summary": "2282284",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282284"
},
{
"category": "external",
"summary": "2282314",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282314"
},
{
"category": "external",
"summary": "2282543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282543"
},
{
"category": "external",
"summary": "2282834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282834"
},
{
"category": "external",
"summary": "2283024",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283024"
},
{
"category": "external",
"summary": "2283489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283489"
},
{
"category": "external",
"summary": "2283621",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283621"
},
{
"category": "external",
"summary": "2283629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283629"
},
{
"category": "external",
"summary": "2283651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283651"
},
{
"category": "external",
"summary": "2283797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283797"
},
{
"category": "external",
"summary": "2283820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283820"
},
{
"category": "external",
"summary": "2283965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283965"
},
{
"category": "external",
"summary": "2283981",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283981"
},
{
"category": "external",
"summary": "2284090",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284090"
},
{
"category": "external",
"summary": "2284430",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284430"
},
{
"category": "external",
"summary": "2284652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284652"
},
{
"category": "external",
"summary": "2290677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290677"
},
{
"category": "external",
"summary": "2290847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290847"
},
{
"category": "external",
"summary": "2291132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291132"
},
{
"category": "external",
"summary": "2291182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291182"
},
{
"category": "external",
"summary": "2291255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291255"
},
{
"category": "external",
"summary": "2291301",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291301"
},
{
"category": "external",
"summary": "2291305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291305"
},
{
"category": "external",
"summary": "2291336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291336"
},
{
"category": "external",
"summary": "2292114",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292114"
},
{
"category": "external",
"summary": "2292241",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292241"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2293621",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293621"
},
{
"category": "external",
"summary": "2293634",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293634"
},
{
"category": "external",
"summary": "2293881",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293881"
},
{
"category": "external",
"summary": "2294383",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294383"
},
{
"category": "external",
"summary": "2296991",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296991"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4591.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement \u0026 bug fix update",
"tracking": {
"current_release_date": "2025-12-03T23:59:33+00:00",
"generator": {
"date": "2025-12-03T23:59:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.13"
}
},
"id": "RHSA-2024:4591",
"initial_release_date": "2024-07-17T13:09:39+00:00",
"revision_history": [
{
"date": "2024-07-17T13:09:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-17T13:09:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-12-03T23:59:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.0-33"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.0-73"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.0-57"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.0-12"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.0-58"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.0-66"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.0-33"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.0-73"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.0-57"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.0-12"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.0-58"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.0-66"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.0-33"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.0-73"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.0-57"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.0-12"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.0-58"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.0-66"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-43646",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-09-28T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2241149"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the get-func-name package in the chai module. Affected versions of this package are vulnerable to Regular expression denial of service (ReDoS) attacks, affecting system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "get-func-name: ReDoS in chai module",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "- This vulnerability can be exploited when there is an imbalance in parentheses, which results in excessive backtracking and subsequently increases the CPU load and processing time significantly. This vulnerability can be triggered using the following input: \u0027\\t\u0027.repeat(54773) + \u0027\\t/function/i\u0027\n\n- The get-func-name package is a build-time dependency in Red Hat products, which reduces the chance of successful exploitation. Hence, the impact is set to Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-43646"
},
{
"category": "external",
"summary": "RHBZ#2241149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-43646",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43646"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-4q6p-r6v2-jvc5",
"url": "https://github.com/advisories/GHSA-4q6p-r6v2-jvc5"
},
{
"category": "external",
"summary": "https://github.com/chaijs/get-func-name/blob/78ad756441a83f3dc203e50f76c113ae3ac017dc/index.js#L15",
"url": "https://github.com/chaijs/get-func-name/blob/78ad756441a83f3dc203e50f76c113ae3ac017dc/index.js#L15"
}
],
"release_date": "2023-09-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "get-func-name: ReDoS in chai module"
},
{
"cve": "CVE-2023-47108",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-11-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2251198"
}
],
"notes": [
{
"category": "description",
"text": "A memory exhaustion flaw was found in the otelgrpc handler of open-telemetry. This flaw may allow a remote unauthenticated attacker to flood the peer address and port and exhaust the server\u0027s memory by sending multiple malicious requests, affecting the availability of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While no authentication is required, there are a significant number of non-default factors that prevent widespread exploitation of this issue. To affect a service, all of the following must be true:\n- The go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc package must be in use\n- Configured a metrics pipeline that uses the UnaryServerInterceptor wrapper function\n- No filtering of unknown HTTP methods or user agents at a higher level, such as Content Delivery Network\n\nDue to the limited attack surface, Red Hat Product Security rates the impact of this flaw as Moderate.\n\ncluster-network-operator-container in Openshift Container Platform 4 is rated as low and Won\u0027t Fix as the stats are behind an RBAC proxy and isn\u0027t available to unauthenticated users.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-47108"
},
{
"category": "external",
"summary": "RHBZ#2251198",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251198"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-47108",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47108"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-47108",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47108"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-8pgv-569h-w5rw",
"url": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-8pgv-569h-w5rw"
}
],
"release_date": "2023-11-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "As a workaround, use a view removing the attributes. Another possibility is to disable grpc metrics instrumentation by passing otelgrpc.WithMeterProvider option with noop.NewMeterProvider.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics"
},
{
"acknowledgments": [
{
"names": [
"@r3kumar",
"@qmuntal"
]
}
],
"cve": "CVE-2024-1394",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2024-02-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2262921"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "RHBZ#2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136",
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6",
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"category": "external",
"summary": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f",
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2660",
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2660.json",
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads"
},
{
"cve": "CVE-2024-5042",
"cwe": {
"id": "CWE-250",
"name": "Execution with Unnecessary Privileges"
},
"discovery_date": "2024-05-15T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280921"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Submariner project. Due to unnecessary role-based access control permissions, a privileged attacker can run a malicious container on a node that may allow them to steal service account tokens and further compromise other nodes and potentially the entire cluster.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "submariner-operator: RBAC permissions can allow for the spread of node compromises",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For the submariner operator in Red Hat Advanced Cluster Management for Kubernetes, the submariner-security outlined potential vulnerabilities regarding RBAC permissions being too broad. Those permissions make it possible to create, patch or update statefulsets or replicasets resources. This may allow new privileged containers escaping them and gaining root privileges on any worker nodes where those containers have been deployed within the cluster.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-5042"
},
{
"category": "external",
"summary": "RHBZ#2280921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-5042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5042"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-5042",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5042"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-2rhx-qhxp-5jpw",
"url": "https://github.com/advisories/GHSA-2rhx-qhxp-5jpw"
}
],
"release_date": "2024-05-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "submariner-operator: RBAC permissions can allow for the spread of node compromises"
},
{
"cve": "CVE-2024-24783",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-05T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268019"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s crypto/x509 standard library package. Verifying a certificate chain that contains a certificate with an unknown public key algorithm will cause a Certificate.Verify to panic. This issue affects all crypto/tls clients and servers that set Config.ClientAuth to VerifyClientCertIfGiven or RequireAndVerifyClientCert.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation leading to a CWE-400: Uncontrolled Resource Consumption vulnerability, and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces least functionality, enabling only essential features, services, and ports to minimize the attack surface for improper input handling. Secure development practices, such as static code analysis, peer reviews, and strict input validation, detect and remediate unsafe patterns early in the lifecycle, reducing the risk of malformed input causing instability or resource exhaustion. Process isolation confines untrusted workloads to restricted domains, preventing a single process from monopolizing shared resources. Malicious code protections, including IDS/IPS and antimalware tools, detect and mitigate input-driven resource consumption and denial-of-service attempts in real time. Centralized logging and continuous monitoring provide visibility into abnormal resource behavior, enabling rapid detection and response. Additionally, web application firewalls and load-balancing controls further limit the impact of uncontrolled input or resource use, maintaining platform stability and performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24783"
},
{
"category": "external",
"summary": "RHBZ#2268019",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268019"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24783"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24783",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24783"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2024/03/08/4",
"url": "http://www.openwall.com/lists/oss-security/2024/03/08/4"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-3q2c-pvp5-3cqp",
"url": "https://github.com/advisories/GHSA-3q2c-pvp5-3cqp"
},
{
"category": "external",
"summary": "https://go.dev/cl/569339",
"url": "https://go.dev/cl/569339"
},
{
"category": "external",
"summary": "https://go.dev/issue/65390",
"url": "https://go.dev/issue/65390"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg",
"url": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2598",
"url": "https://pkg.go.dev/vuln/GO-2024-2598"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240329-0005",
"url": "https://security.netapp.com/advisory/ntap-20240329-0005"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm"
},
{
"cve": "CVE-2024-24785",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"discovery_date": "2024-03-05T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s html/template standard library package. If errors returned from MarshalJSON methods contain user-controlled data, they may be used to break the contextual auto-escaping behavior of the html/template package, allowing subsequent actions to inject unexpected content into templates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: errors returned from MarshalJSON methods may break template escaping",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24785"
},
{
"category": "external",
"summary": "RHBZ#2268022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24785"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24785",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24785"
},
{
"category": "external",
"summary": "https://go.dev/cl/564196",
"url": "https://go.dev/cl/564196"
},
{
"category": "external",
"summary": "https://go.dev/issue/65697",
"url": "https://go.dev/issue/65697"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg",
"url": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2610.json",
"url": "https://vuln.go.dev/ID/GO-2024-2610.json"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: errors returned from MarshalJSON methods may break template escaping"
},
{
"cve": "CVE-2024-24786",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268046"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang\u0027s protobuf module, where the unmarshal function can enter an infinite loop when processing certain invalid inputs. This issue occurs during unmarshaling into a message that includes a google.protobuf.Any or when the UnmarshalOptions.DiscardUnknown option is enabled. This flaw allows an attacker to craft malicious input tailored to trigger the identified flaw in the unmarshal function. By providing carefully constructed invalid inputs, they could potentially cause the function to enter an infinite loop, resulting in a denial of service condition or other unintended behaviors in the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to ensure the most restrictive setting needed for operational requirements. Event logs are collected and processed for centralization, correlation, analysis, monitoring, reporting, alerting, and retention. This process ensures that audit logs are generated for specific events involving sensitive information, enabling capabilities like excessive CPU usage, long execution times, or processes consuming abnormal amounts of memory. Static code analysis and peer code review techniques are used to execute robust input validation and error-handling mechanisms to ensure all user inputs are thoroughly validated, preventing infinite loops caused by malformed or unexpected input, such as unbounded user input or unexpected null values that cause loops to never terminate. In the event of successful exploitation, process isolation limits the effect of an infinite loop to a single process rather than allowing it to consume all system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "RHBZ#2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://go.dev/cl/569356",
"url": "https://go.dev/cl/569356"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/",
"url": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2611",
"url": "https://pkg.go.dev/vuln/GO-2024-2611"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-28180",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268854"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose-go: improper handling of highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "RHBZ#2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose-go: improper handling of highly compressed data"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
}
]
}
RHSA-2024:6147
Vulnerability from csaf_redhat - Published: 2024-09-03 02:29 - Updated: 2025-11-21 19:11Summary
Red Hat Security Advisory: nodejs:18 security update
Notes
Topic
An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\n* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6147",
"url": "https://access.redhat.com/errata/RHSA-2024:6147"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6147.json"
}
],
"title": "Red Hat Security Advisory: nodejs:18 security update",
"tracking": {
"current_release_date": "2025-11-21T19:11:16+00:00",
"generator": {
"date": "2025-11-21T19:11:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2024:6147",
"initial_release_date": "2024-09-03T02:29:11+00:00",
"revision_history": [
{
"date": "2024-09-03T02:29:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-03T02:29:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:11:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src (nodejs:18)",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=src\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src (nodejs:18)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.3.0%2B19762%2Bd716bf3b?arch=src\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src (nodejs:18)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.1.0%2B15718%2Be52ec601?arch=src\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"product": {
"name": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch (nodejs:18)",
"product_id": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch (nodejs:18)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.3.0%2B19762%2Bd716bf3b?arch=noarch\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch (nodejs:18)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.1.0%2B15718%2Be52ec601?arch=noarch\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch (nodejs:18)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel9.1.0%2B15718%2Be52ec601?arch=noarch\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18)",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18)",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18)",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18)",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18)",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18)",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18)",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18)",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18)",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18)",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18)",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18)",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18)",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18)",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18)",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18)",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18)",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x (nodejs:18)",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18)",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18)",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18)",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18)",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18)",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18)",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:18:9040020240807131341:rhel9"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18"
},
"product_reference": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64 (nodejs:18) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22020",
"discovery_date": "2024-07-09T02:20:08+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2296417"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js package. By embedding non-network imports in data URLs, this flaw allows an attacker to execute arbitrary code, compromising system security.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs: Bypass network import restriction via data URL",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is categorized as moderate severity rather than high due to its specific conditions for exploitation and impact scope. While the flaw permits bypassing network import restrictions via data URLs to execute arbitrary code, its exploitation is contingent on the attacker\u2019s ability to inject and execute code within a controlled environment. The impact is constrained to scenarios where the vulnerable application processes data URLs and lacks robust validation mechanisms. Additionally, this issue requires the attacker to exploit specific code paths and permissions, which limits its widespread applicability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22020"
},
{
"category": "external",
"summary": "RHBZ#2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/2092749",
"url": "https://hackerone.com/reports/2092749"
}
],
"release_date": "2024-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T02:29:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6147"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs: Bypass network import restriction via data URL"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T02:29:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6147"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x::nodejs:18",
"AppStream-9.4.0.Z.MAIN.EUS:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64::nodejs:18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
}
]
}
RHSA-2024_5814
Vulnerability from csaf_redhat - Published: 2024-08-26 08:36 - Updated: 2024-12-17 17:45Summary
Red Hat Security Advisory: nodejs:20 security update
Notes
Topic
An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)
* nodejs: fs.lstat bypasses permission model (CVE-2024-22018)
* nodejs: fs.fchown/fchmod bypasses permission model (CVE-2024-36137)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\n* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)\n\n* nodejs: fs.lstat bypasses permission model (CVE-2024-22018)\n\n* nodejs: fs.fchown/fchmod bypasses permission model (CVE-2024-36137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:5814",
"url": "https://access.redhat.com/errata/RHSA-2024:5814"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "external",
"summary": "2296990",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296990"
},
{
"category": "external",
"summary": "2299281",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299281"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5814.json"
}
],
"title": "Red Hat Security Advisory: nodejs:20 security update",
"tracking": {
"current_release_date": "2024-12-17T17:45:30+00:00",
"generator": {
"date": "2024-12-17T17:45:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2024:5814",
"initial_release_date": "2024-08-26T08:36:35+00:00",
"revision_history": [
{
"date": "2024-08-26T08:36:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-08-26T08:36:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-17T17:45:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs:20:8100020240808073736:489197e6",
"product": {
"name": "nodejs:20:8100020240808073736:489197e6",
"product_id": "nodejs:20:8100020240808073736:489197e6",
"product_identification_helper": {
"purl": "pkg:rpmmod/redhat/nodejs@20:8100020240808073736:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"product": {
"name": "nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"product_id": "nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.9.0%2B20473%2Bc4e3d824?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.9.0%2B19519%2Be25b965a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel8.9.0%2B19519%2Be25b965a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"product": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"product_id": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.9.0%2B20473%2Bc4e3d824?arch=src"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.9.0%2B19519%2Be25b965a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_id": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_id": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_id": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_id": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_id": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"product": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"product_id": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.1-1.20.16.0.1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_id": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_id": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_id": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_id": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_id": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"product": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_id": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.1-1.20.16.0.1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_id": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_id": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_id": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_id": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_id": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"product": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"product_id": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.1-1.20.16.0.1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_id": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_id": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_id": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_id": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_id": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.16.0-1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64",
"product": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64",
"product_id": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.1-1.20.16.0.1.module%2Bel8.10.0%2B22203%2Ba88c8310?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
"product_reference": "nodejs:20:8100020240808073736:489197e6",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64"
},
"product_reference": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le"
},
"product_reference": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x"
},
"product_reference": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src"
},
"product_reference": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64"
},
"product_reference": "nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64"
},
"product_reference": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le"
},
"product_reference": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x"
},
"product_reference": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64"
},
"product_reference": "nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64"
},
"product_reference": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le"
},
"product_reference": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x"
},
"product_reference": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64"
},
"product_reference": "nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64"
},
"product_reference": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le"
},
"product_reference": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x"
},
"product_reference": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64"
},
"product_reference": "nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch"
},
"product_reference": "nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64"
},
"product_reference": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le"
},
"product_reference": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x"
},
"product_reference": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64"
},
"product_reference": "nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64"
},
"product_reference": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le"
},
"product_reference": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x"
},
"product_reference": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64 as a component of nodejs:20:8100020240808073736:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
},
"product_reference": "npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22018",
"discovery_date": "2024-07-10T02:20:15+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2296990"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js package. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.lstat API. As a result, malicious actors can retrieve stats from files they do not have explicit read access to.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs: fs.lstat bypasses permission model",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22018"
},
{
"category": "external",
"summary": "RHBZ#2296990",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296990"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/2145862",
"url": "https://hackerone.com/reports/2145862"
}
],
"release_date": "2024-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-26T08:36:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5814"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 2.9,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "nodejs: fs.lstat bypasses permission model"
},
{
"cve": "CVE-2024-22020",
"discovery_date": "2024-07-09T02:20:08+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2296417"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js package. By embedding non-network imports in data URLs, this flaw allows an attacker to execute arbitrary code, compromising system security.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs: Bypass network import restriction via data URL",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is categorized as moderate severity rather than high due to its specific conditions for exploitation and impact scope. While the flaw permits bypassing network import restrictions via data URLs to execute arbitrary code, its exploitation is contingent on the attacker\u2019s ability to inject and execute code within a controlled environment. The impact is constrained to scenarios where the vulnerable application processes data URLs and lacks robust validation mechanisms. Additionally, this issue requires the attacker to exploit specific code paths and permissions, which limits its widespread applicability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22020"
},
{
"category": "external",
"summary": "RHBZ#2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/2092749",
"url": "https://hackerone.com/reports/2092749"
}
],
"release_date": "2024-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-26T08:36:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5814"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs: Bypass network import restriction via data URL"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-26T08:36:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5814"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-36137",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"discovery_date": "2024-07-22T14:03:28+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2299281"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Node.js, affecting users of the experimental permission model when the --allow-fs-write flag is used. The Node.js Permission Model does not operate on file descriptors. However, operations such as fs.fchown or fs.fchmod can use a \"read-only\" file descriptor to change the owner and permissions of a file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs: fs.fchown/fchmod bypasses permission model",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is specific to the Permission Model, which is currently an experimental feature of Node.js.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-36137"
},
{
"category": "external",
"summary": "RHBZ#2299281",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299281"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-36137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-36137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36137"
}
],
"release_date": "2024-07-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-26T08:36:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5814"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debuginfo-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-debugsource-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-devel-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-docs-1:20.16.0-1.module+el8.10.0+22203+a88c8310.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-full-i18n-1:20.16.0-1.module+el8.10.0+22203+a88c8310.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.9.0+20473+c4e3d824.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19519+e25b965a.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19519+e25b965a.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:20:8100020240808073736:489197e6:npm-1:10.8.1-1.20.16.0.1.module+el8.10.0+22203+a88c8310.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "nodejs: fs.fchown/fchmod bypasses permission model"
}
]
}
RHSA-2024:6755
Vulnerability from csaf_redhat - Published: 2024-09-18 11:56 - Updated: 2025-12-05 12:21Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.2 security and bug fix update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.2 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an
S3 compatible API.
Bug fixes:
* Previously, when the label on the node was empty, the mount would fail. With this fix, when the node label is empty, the node is not considered for `crush_location` mount option and as a result persistent volume claim (PVC) mounts successfully. (BZ#2303177)
* Previously, after the OpenShift Data Foundation upgrade, the backingstore was stuck with "Connecting" status. With this fix, the location of the `upgrade_bucket_policy` script is corrected. (BZ#2303414)
All users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.2 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an\nS3 compatible API.\n\nBug fixes:\n\n* Previously, when the label on the node was empty, the mount would fail. With this fix, when the node label is empty, the node is not considered for `crush_location` mount option and as a result persistent volume claim (PVC) mounts successfully. (BZ#2303177)\n\n* Previously, after the OpenShift Data Foundation upgrade, the backingstore was stuck with \"Connecting\" status. With this fix, the location of the `upgrade_bucket_policy` script is corrected. (BZ#2303414)\n\nAll users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6755",
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-6104",
"url": "https://access.redhat.com/security/cve/CVE-2024-6104"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-8421",
"url": "https://access.redhat.com/security/cve/CVE-2024-8421"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24789",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28176",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28863",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-29180",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-37890",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-41818",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "2266006",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266006"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2290526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290526"
},
{
"category": "external",
"summary": "2290675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290675"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "2300022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300022"
},
{
"category": "external",
"summary": "2300289",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300289"
},
{
"category": "external",
"summary": "2300332",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300332"
},
{
"category": "external",
"summary": "2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "2303177",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303177"
},
{
"category": "external",
"summary": "2303414",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303414"
},
{
"category": "external",
"summary": "2304074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304074"
},
{
"category": "external",
"summary": "2309710",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309710"
},
{
"category": "external",
"summary": "2310210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6755.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.2 security and bug fix update",
"tracking": {
"current_release_date": "2025-12-05T12:21:13+00:00",
"generator": {
"date": "2025-12-05T12:21:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.13"
}
},
"id": "RHSA-2024:6755",
"initial_release_date": "2024-09-18T11:56:25+00:00",
"revision_history": [
{
"date": "2024-09-18T11:56:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-18T11:56:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-12-05T12:21:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.2-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.2-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.2-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2024-6104",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2024-06-24T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2294000"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-retryablehttp: url might write sensitive information to log file",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-532: Insertion of Sensitive Information into Log File vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nLogging configurations are centrally managed and follow secure defaults that avoid recording sensitive information such as passwords, tokens, or keys. Audit logs are periodically reviewed and analyzed to identify anomalous events or improper logging practices, while privileged functions are monitored to ensure sensitive actions are traceable without overexposing data. Integrity verification mechanisms protect the authenticity of log data, helping detect unauthorized modification or injection. These layered controls significantly reduce the likelihood that sensitive data will be exposed through logging and ensure that any deviations are quickly detected and remediated.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-6104"
},
{
"category": "external",
"summary": "RHBZ#2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-6104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6104"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104"
}
],
"release_date": "2024-06-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-retryablehttp: url might write sensitive information to log file"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-41818",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-29T16:24:42+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2300499"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service (ReDoS) flaw was found in fast-xml-parser in the currency.js script. By sending a specially crafted regex input, a remote attacker could cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: ReDOS at currency parsing in currency.js",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat has decided to rate this vulnerability as Important due to the potential loss of Availability and the low complexity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "RHBZ#2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41818"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v"
}
],
"release_date": "2024-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: ReDOS at currency parsing in currency.js"
}
]
}
RHSA-2024_8906
Vulnerability from csaf_redhat - Published: 2024-11-05 17:49 - Updated: 2024-12-18 04:38Summary
Red Hat Security Advisory: Satellite 6.16.0 release
Notes
Topic
A new release is now available for Red Hat Satellite 6.16 for RHEL 8 and 9.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
Security Fix(es):
* mosquitto: sending specific sequences of packets may trigger memory leak
(CVE-2024-8376)
* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067)
urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* python-django: Potential denial-of-service in django.utils.html.urlize() (CVE-2024-38875)
* python-django: Username enumeration through timing difference for users with unusable passwords (CVE-2024-39329)
* python-django: Potential directory-traversal in django.core.files.storage.Storage.save() (CVE-2024-39330)
* python-django: Potential denial-of-service in django.utils.translation.get_supported_language_variant() (CVE-2024-39614)
* github.com/jaraco/zipp: Denial of Service (infinite loop) via crafted zip file in jaraco/zipp (CVE-2024-5569)
* puppet-foreman: An authentication bypass vulnerability exists in Foreman (CVE-2024-7012)
* python-django: Potential SQL injection in QuerySet.values() and values_list() (CVE-2024-42005)
* grpc: client communicating with a HTTP/2 proxy can poison the HPACK table between the proxy and the backend (CVE-2024-7246)
* puppet-pulpcore: An authentication bypass vulnerability exists in pulpcore (CVE-2024-7923)
* foreman: Read-only access to entire DB from templates (CVE-2024-8553)
Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.