Action not permitted
Modal body text goes here.
cve-2024-8376
Vulnerability from cvelistv5
Published
2024-10-11 15:18
Modified
2024-10-31 09:15
Severity ?
EPSS score ?
Summary
Memory leak
References
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Eclipse Foundation | Mosquitto |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-8376",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T15:25:39.508033Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T15:25:54.957Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"packageName": "mosquitto",
"product": "Mosquitto",
"repo": "https://github.com/eclipse/mosquitto",
"vendor": "Eclipse Foundation",
"versions": [
{
"status": "affected",
"version": "2.0.18"
},
{
"status": "unaffected",
"version": "2.0.19"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Roman Kraus (Fraunhofer FOKUS)"
},
{
"lang": "en",
"type": "finder",
"value": "Steffen L\u00fcdtke (Fraunhofer FOKUS)"
},
{
"lang": "en",
"type": "finder",
"value": "Martin Schneider (Fraunhofer FOKUS)"
},
{
"lang": "en",
"type": "finder",
"value": "Ramon Barakat (Fraunhofer FOKUS)"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of \"CONNECT\", \"DISCONNECT\", \"SUBSCRIBE\", \"UNSUBSCRIBE\" and \"PUBLISH\" packets.\u003cbr\u003e"
}
],
"value": "In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of \"CONNECT\", \"DISCONNECT\", \"SUBSCRIBE\", \"UNSUBSCRIBE\" and \"PUBLISH\" packets."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-401",
"description": "CWE-401 Missing Release of Memory after Effective Lifetime",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416 Use After Free",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-755",
"description": "CWE-755 Improper Handling of Exceptional Conditions",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-10-31T09:15:30.149Z",
"orgId": "e51fbebd-6053-4e49-959f-1b94eeb69a2c",
"shortName": "eclipse"
},
"references": [
{
"tags": [
"issue-tracking"
],
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216"
},
{
"tags": [
"issue-tracking"
],
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217"
},
{
"tags": [
"issue-tracking"
],
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/218"
},
{
"tags": [
"issue-tracking"
],
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/227"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/26"
},
{
"tags": [
"patch"
],
"url": "https://github.com/eclipse/mosquitto/releases/tag/v2.0.19"
},
{
"tags": [
"product"
],
"url": "https://mosquitto.org/"
},
{
"tags": [
"patch"
],
"url": "https://github.com/eclipse-mosquitto/mosquitto/commit/1914b3ee2a18102d0a94cbdbbfeae1afa03edd17"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Memory leak",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "e51fbebd-6053-4e49-959f-1b94eeb69a2c",
"assignerShortName": "eclipse",
"cveId": "CVE-2024-8376",
"datePublished": "2024-10-11T15:18:54.142Z",
"dateReserved": "2024-09-02T13:50:51.894Z",
"dateUpdated": "2024-10-31T09:15:30.149Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-8376\",\"sourceIdentifier\":\"emo@eclipse.org\",\"published\":\"2024-10-11T16:15:14.860\",\"lastModified\":\"2024-11-15T17:21:02.327\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of \\\"CONNECT\\\", \\\"DISCONNECT\\\", \\\"SUBSCRIBE\\\", \\\"UNSUBSCRIBE\\\" and \\\"PUBLISH\\\" packets.\"},{\"lang\":\"es\",\"value\":\"En Eclipse Mosquitto hasta la versi\u00f3n 2.0.18a, un atacante puede lograr fugas de memoria, fallas de segmentaci\u00f3n o heap-use-after-free enviando secuencias espec\u00edficas de paquetes \\\"CONECTAR\\\", \\\"DESCONECTAR\\\", \\\"SUBSCRIBE\\\", \\\"CANCELAR SUSCRIPCI\u00d3N\\\" y \\\"PUBLICAR\\\".\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"emo@eclipse.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"vulnerableSystemConfidentiality\":\"HIGH\",\"vulnerableSystemIntegrity\":\"LOW\",\"vulnerableSystemAvailability\":\"HIGH\",\"subsequentSystemConfidentiality\":\"NONE\",\"subsequentSystemIntegrity\":\"NONE\",\"subsequentSystemAvailability\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirements\":\"NOT_DEFINED\",\"integrityRequirements\":\"NOT_DEFINED\",\"availabilityRequirements\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnerableSystemConfidentiality\":\"NOT_DEFINED\",\"modifiedVulnerableSystemIntegrity\":\"NOT_DEFINED\",\"modifiedVulnerableSystemAvailability\":\"NOT_DEFINED\",\"modifiedSubsequentSystemConfidentiality\":\"NOT_DEFINED\",\"modifiedSubsequentSystemIntegrity\":\"NOT_DEFINED\",\"modifiedSubsequentSystemAvailability\":\"NOT_DEFINED\",\"safety\":\"NOT_DEFINED\",\"automatable\":\"NOT_DEFINED\",\"recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-401\"},{\"lang\":\"en\",\"value\":\"CWE-416\"},{\"lang\":\"en\",\"value\":\"CWE-755\"}]},{\"source\":\"emo@eclipse.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-401\"},{\"lang\":\"en\",\"value\":\"CWE-416\"},{\"lang\":\"en\",\"value\":\"CWE-755\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:mosquitto:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.0.19\",\"matchCriteriaId\":\"427A4001-C682-433E-A653-B13B770BF193\"}]}]}],\"references\":[{\"url\":\"https://github.com/eclipse-mosquitto/mosquitto/commit/1914b3ee2a18102d0a94cbdbbfeae1afa03edd17\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/eclipse/mosquitto/releases/tag/v2.0.19\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Patch\",\"Product\"]},{\"url\":\"https://gitlab.eclipse.org/security/cve-assignement/-/issues/26\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/218\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/227\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://mosquitto.org/\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Product\"]}]}}"
}
}
rhsa-2024_8719
Vulnerability from csaf_redhat
Published
2024-10-31 18:49
Modified
2024-11-06 14:07
Summary
Red Hat Security Advisory: Satellite 6.15.4.2 Async Update
Notes
Topic
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from the
CVE link(s) in the References section.
Details
Red Hat Satellite is a system management solution that allows organizations
to configure and maintain their systems without the necessity to provide
public Internet access to their servers or other client systems. It
performs provisioning and configuration management of predefined standard
operating environments.
Security Fix(es):
* mosquitto: sending specific sequences of packets may trigger memory leak (CVE-2024-8376)
* foreman: Read-only access to entire DB from templates (CVE-2024-8553)
Users of Red Hat Satellite are advised to upgrade to these updated
packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from the\nCVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations\nto configure and maintain their systems without the necessity to provide\npublic Internet access to their servers or other client systems. It\nperforms provisioning and configuration management of predefined standard\noperating environments.\nSecurity Fix(es):\n\n* mosquitto: sending specific sequences of packets may trigger memory leak (CVE-2024-8376)\n* foreman: Read-only access to entire DB from templates (CVE-2024-8553)\n\nUsers of Red Hat Satellite are advised to upgrade to these updated\npackages, which fix these bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8719",
"url": "https://access.redhat.com/errata/RHSA-2024:8719"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index"
},
{
"category": "external",
"summary": "2312524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312524"
},
{
"category": "external",
"summary": "2318080",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318080"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8719.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.15.4.2 Async Update",
"tracking": {
"current_release_date": "2024-11-06T14:07:09+00:00",
"generator": {
"date": "2024-11-06T14:07:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2024:8719",
"initial_release_date": "2024-10-31T18:49:44+00:00",
"revision_history": [
{
"date": "2024-10-31T18:49:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-31T18:49:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-06T14:07:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.15::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.15::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_utils:6.15::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "foreman-0:3.9.1.11-1.el8sat.src",
"product": {
"name": "foreman-0:3.9.1.11-1.el8sat.src",
"product_id": "foreman-0:3.9.1.11-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.9.1.11-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "mosquitto-0:2.0.19-1.el8sat.src",
"product": {
"name": "mosquitto-0:2.0.19-1.el8sat.src",
"product_id": "mosquitto-0:2.0.19-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto@2.0.19-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.15.4.2-1.el8sat.src",
"product": {
"name": "satellite-0:6.15.4.2-1.el8sat.src",
"product_id": "satellite-0:6.15.4.2-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.15.4.2-1.el8sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "foreman-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-cli@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-debug@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-dynflow-sidekiq@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ec2@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-journald@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-libvirt@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-openstack@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ovirt@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-pcp@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-postgresql@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-redis@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-service-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-service-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-service-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-service@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-telemetry@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"product": {
"name": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"product_id": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-vmware@3.9.1.11-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.15.4.2-1.el8sat.noarch",
"product": {
"name": "satellite-0:6.15.4.2-1.el8sat.noarch",
"product_id": "satellite-0:6.15.4.2-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.15.4.2-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"product": {
"name": "satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"product_id": "satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.15.4.2-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.15.4.2-1.el8sat.noarch",
"product": {
"name": "satellite-common-0:6.15.4.2-1.el8sat.noarch",
"product_id": "satellite-common-0:6.15.4.2-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.15.4.2-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"product": {
"name": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"product_id": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.15.4.2-1.el8sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"product": {
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"product_id": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto@2.0.19-1.el8sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"product": {
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"product_id": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto-debugsource@2.0.19-1.el8sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"product": {
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"product_id": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto-debuginfo@2.0.19-1.el8sat?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.11-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src"
},
"product_reference": "foreman-0:3.9.1.11-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.4.2-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.src"
},
"product_reference": "satellite-0:6.15.4.2-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-cli-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-common-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.11-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src"
},
"product_reference": "foreman-0:3.9.1.11-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.4.2-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.src"
},
"product_reference": "satellite-0:6.15.4.2-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-capsule-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-cli-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-common-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.11-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src"
},
"product_reference": "foreman-0:3.9.1.11-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.4.2-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.src"
},
"product_reference": "satellite-0:6.15.4.2-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-capsule-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-cli-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.15.4.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-common-0:6.15.4.2-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.15.4.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-8376",
"cwe": {
"id": "CWE-755",
"name": "Improper Handling of Exceptional Conditions"
},
"discovery_date": "2024-10-11T16:02:55.907427+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.4.2-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2318080"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Eclipse Mosquitto. A remote attacker may be able to trigger memory leakage, segmentation fault, or a heap-use-after-free condition by sending specific sequences of \"CONNECT\", \"DISCONNECT\", \"SUBSCRIBE\", \"UNSUBSCRIBE\", and \"PUBLISH\" packets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mosquitto: sending specific sequences of packets may trigger memory leak",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.4.2-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-8376"
},
{
"category": "external",
"summary": "RHBZ#2318080",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318080"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-8376",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8376"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8376",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8376"
},
{
"category": "external",
"summary": "https://github.com/eclipse/mosquitto/releases/tag/v2.0.19",
"url": "https://github.com/eclipse/mosquitto/releases/tag/v2.0.19"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/26",
"url": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/26"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/218",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/218"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/227",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/227"
},
{
"category": "external",
"summary": "https://mosquitto.org/",
"url": "https://mosquitto.org/"
}
],
"release_date": "2024-10-11T15:18:54.142000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-31T18:49:44+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8719"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mosquitto: sending specific sequences of packets may trigger memory leak"
},
{
"cve": "CVE-2024-8553",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-09-16T07:20:13.067000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.4.2-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312524"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Foreman\u0027s loader macros introduced with report templates. These macros may allow an authenticated user with permissions to view and create templates to read any field from Foreman\u0027s database. By using specific strings in the loader macros, users can bypass permissions and access sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "foreman: Read-only access to entire DB from templates",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate rather than important due to the requirement of authenticated access and specific permissions. While it allows exploitation of loader macros to access unintended fields in Foreman\u0027s database, the vulnerability is only accessible to users with permission to view or create templates containing these macros. As a result, the exploit\u0027s potential impact is limited to users who already possess a significant level of access within the system. Furthermore, the issue does not lead to privilege escalation, code execution, or direct system compromise, but rather unauthorized data access.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.4.2-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-8553"
},
{
"category": "external",
"summary": "RHBZ#2312524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312524"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-8553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8553"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8553",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8553"
}
],
"release_date": "2024-10-31T14:29:39.030000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-31T18:49:44+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8719"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.15:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.4.2-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.4.2-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.4.2-1.el8sat.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.11-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.11-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.11-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "foreman: Read-only access to entire DB from templates"
}
]
}
rhsa-2024_8718
Vulnerability from csaf_redhat
Published
2024-10-31 18:49
Modified
2024-11-06 14:07
Summary
Red Hat Security Advisory: Satellite 6.14.4.3 Async Update
Notes
Topic
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat Satellite is a system management solution that allows organizations
to configure and maintain their systems without the necessity to provide
public Internet access to their servers or other client systems. It
performs provisioning and configuration management of predefined standard
operating environments.
Security Fix(es):
* mosquitto: sending specific sequences of packets may trigger memory leak
(CVE-2024-8376)
* foreman: Read-only access to entire DB from templates (CVE-2024-8553)
Users of Red Hat Satellite are advised to upgrade to these updated
packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations\nto configure and maintain their systems without the necessity to provide\npublic Internet access to their servers or other client systems. It\nperforms provisioning and configuration management of predefined standard\noperating environments.\nSecurity Fix(es):\n\n* mosquitto: sending specific sequences of packets may trigger memory leak\n(CVE-2024-8376)\n* foreman: Read-only access to entire DB from templates (CVE-2024-8553)\n\nUsers of Red Hat Satellite are advised to upgrade to these updated\npackages, which fix these bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8718",
"url": "https://access.redhat.com/errata/RHSA-2024:8718"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.14/html/updating_red_hat_satellite/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.14/html/updating_red_hat_satellite/index"
},
{
"category": "external",
"summary": "2312524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312524"
},
{
"category": "external",
"summary": "2318080",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318080"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8718.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.14.4.3 Async Update",
"tracking": {
"current_release_date": "2024-11-06T14:07:20+00:00",
"generator": {
"date": "2024-11-06T14:07:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2024:8718",
"initial_release_date": "2024-10-31T18:49:09+00:00",
"revision_history": [
{
"date": "2024-10-31T18:49:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-31T18:49:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-06T14:07:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 6.14 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.14::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.14 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.14::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.14 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_utils:6.14::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "satellite-0:6.14.4.3-1.el8sat.src",
"product": {
"name": "satellite-0:6.14.4.3-1.el8sat.src",
"product_id": "satellite-0:6.14.4.3-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.14.4.3-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-lifecycle-0:6.14.0-2.el8sat.src",
"product": {
"name": "satellite-lifecycle-0:6.14.0-2.el8sat.src",
"product_id": "satellite-lifecycle-0:6.14.0-2.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-lifecycle@6.14.0-2.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "foreman-0:3.7.0.14-1.el8sat.src",
"product": {
"name": "foreman-0:3.7.0.14-1.el8sat.src",
"product_id": "foreman-0:3.7.0.14-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.7.0.14-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "mosquitto-0:2.0.19-1.el8sat.src",
"product": {
"name": "mosquitto-0:2.0.19-1.el8sat.src",
"product_id": "mosquitto-0:2.0.19-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto@2.0.19-1.el8sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"product": {
"name": "satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"product_id": "satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.14.4.3-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"product": {
"name": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"product_id": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.14.4.3-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.14.4.3-1.el8sat.noarch",
"product": {
"name": "satellite-common-0:6.14.4.3-1.el8sat.noarch",
"product_id": "satellite-common-0:6.14.4.3-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.14.4.3-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.14.4.3-1.el8sat.noarch",
"product": {
"name": "satellite-0:6.14.4.3-1.el8sat.noarch",
"product_id": "satellite-0:6.14.4.3-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.14.4.3-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"product": {
"name": "satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"product_id": "satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-lifecycle@6.14.0-2.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-cli@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-debug@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-dynflow-sidekiq@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ec2@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-journald@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-libvirt@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-openstack@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ovirt@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-postgresql@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-redis@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-service-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-service-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-service-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-service@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-telemetry@3.7.0.14-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"product": {
"name": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"product_id": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-vmware@3.7.0.14-1.el8sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"product": {
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"product_id": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto@2.0.19-1.el8sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"product": {
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"product_id": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto-debugsource@2.0.19-1.el8sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"product": {
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"product_id": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mosquitto-debuginfo@2.0.19-1.el8sat?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.7.0.14-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src"
},
"product_reference": "foreman-0:3.7.0.14-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.14.4.3-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.src"
},
"product_reference": "satellite-0:6.14.4.3-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:satellite-capsule-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:satellite-cli-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-capsule:satellite-common-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.7.0.14-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src"
},
"product_reference": "foreman-0:3.7.0.14-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.14.4.3-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.src"
},
"product_reference": "satellite-0:6.14.4.3-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:satellite-capsule-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:satellite-cli-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14-utils:satellite-common-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.7.0.14-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src"
},
"product_reference": "foreman-0:3.7.0.14-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64 as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
},
"product_reference": "mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.14.4.3-1.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.src"
},
"product_reference": "satellite-0:6.14.4.3-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-capsule-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-cli-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.14.4.3-1.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-common-0:6.14.4.3-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.14.4.3-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-lifecycle-0:6.14.0-2.el8sat.noarch as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.noarch"
},
"product_reference": "satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-lifecycle-0:6.14.0-2.el8sat.src as a component of Red Hat Satellite 6.14 for RHEL 8",
"product_id": "8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.src"
},
"product_reference": "satellite-lifecycle-0:6.14.0-2.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.14"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-8376",
"cwe": {
"id": "CWE-755",
"name": "Improper Handling of Exceptional Conditions"
},
"discovery_date": "2024-10-11T16:02:55.907427+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-capsule:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-utils:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2318080"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Eclipse Mosquitto. A remote attacker may be able to trigger memory leakage, segmentation fault, or a heap-use-after-free condition by sending specific sequences of \"CONNECT\", \"DISCONNECT\", \"SUBSCRIBE\", \"UNSUBSCRIBE\", and \"PUBLISH\" packets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mosquitto: sending specific sequences of packets may trigger memory leak",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-capsule:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-utils:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-8376"
},
{
"category": "external",
"summary": "RHBZ#2318080",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318080"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-8376",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8376"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8376",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8376"
},
{
"category": "external",
"summary": "https://github.com/eclipse/mosquitto/releases/tag/v2.0.19",
"url": "https://github.com/eclipse/mosquitto/releases/tag/v2.0.19"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/26",
"url": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/26"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/218",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/218"
},
{
"category": "external",
"summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/227",
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/227"
},
{
"category": "external",
"summary": "https://mosquitto.org/",
"url": "https://mosquitto.org/"
}
],
"release_date": "2024-10-11T15:18:54.142000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-31T18:49:09+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.14/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8718"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mosquitto: sending specific sequences of packets may trigger memory leak"
},
{
"cve": "CVE-2024-8553",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-09-16T07:20:13.067000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-capsule:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-utils:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312524"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Foreman\u0027s loader macros introduced with report templates. These macros may allow an authenticated user with permissions to view and create templates to read any field from Foreman\u0027s database. By using specific strings in the loader macros, users can bypass permissions and access sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "foreman: Read-only access to entire DB from templates",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate rather than important due to the requirement of authenticated access and specific permissions. While it allows exploitation of loader macros to access unintended fields in Foreman\u0027s database, the vulnerability is only accessible to users with permission to view or create templates containing these macros. As a result, the exploit\u0027s potential impact is limited to users who already possess a significant level of access within the system. Furthermore, the issue does not lead to privilege escalation, code execution, or direct system compromise, but rather unauthorized data access.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch"
],
"known_not_affected": [
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-capsule:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-utils:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-8553"
},
{
"category": "external",
"summary": "RHBZ#2312524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312524"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-8553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8553"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8553",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8553"
}
],
"release_date": "2024-10-31T14:29:39.030000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-31T18:49:09+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.14/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8718"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14-capsule:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-capsule:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14-utils:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14-utils:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.src",
"8Base-satellite-6.14:mosquitto-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debuginfo-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:mosquitto-debugsource-0:2.0.19-1.el8sat.x86_64",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-0:6.14.4.3-1.el8sat.src",
"8Base-satellite-6.14:satellite-capsule-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-cli-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-common-0:6.14.4.3-1.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.noarch",
"8Base-satellite-6.14:satellite-lifecycle-0:6.14.0-2.el8sat.src"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-capsule:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-capsule:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14-utils:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14-utils:foreman-vmware-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-0:3.7.0.14-1.el8sat.src",
"8Base-satellite-6.14:foreman-cli-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-debug-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-dynflow-sidekiq-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ec2-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-journald-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-libvirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-openstack-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-ovirt-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-postgresql-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-redis-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-service-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-telemetry-0:3.7.0.14-1.el8sat.noarch",
"8Base-satellite-6.14:foreman-vmware-0:3.7.0.14-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "foreman: Read-only access to entire DB from templates"
}
]
}
rhsa-2024_8906
Vulnerability from csaf_redhat
Published
2024-11-05 17:49
Modified
2024-11-13 21:18
Summary
Red Hat Security Advisory: Satellite 6.16.0 release
Notes
Topic
A new release is now available for Red Hat Satellite 6.16 for RHEL 8 and 9.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
Security Fix(es):
* mosquitto: sending specific sequences of packets may trigger memory leak
(CVE-2024-8376)
* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067)
urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* python-django: Potential denial-of-service in django.utils.html.urlize() (CVE-2024-38875)
* python-django: Username enumeration through timing difference for users with unusable passwords (CVE-2024-39329)
* python-django: Potential directory-traversal in django.core.files.storage.Storage.save() (CVE-2024-39330)
* python-django: Potential denial-of-service in django.utils.translation.get_supported_language_variant() (CVE-2024-39614)
* github.com/jaraco/zipp: Denial of Service (infinite loop) via crafted zip file in jaraco/zipp (CVE-2024-5569)
* puppet-foreman: An authentication bypass vulnerability exists in Foreman (CVE-2024-7012)
* python-django: Potential SQL injection in QuerySet.values() and values_list() (CVE-2024-42005)
* grpc: client communicating with a HTTP/2 proxy can poison the HPACK table between the proxy and the backend (CVE-2024-7246)
* puppet-pulpcore: An authentication bypass vulnerability exists in pulpcore (CVE-2024-7923)
* foreman: Read-only access to entire DB from templates (CVE-2024-8553)
Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.