{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for python-kdcproxy is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV (CVE-2025-59088)\n\n* python-kdcproxy: Remote DoS via unbounded TCP upstream buffering (CVE-2025-59089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:22982",
        "url": "https://access.redhat.com/errata/RHSA-2025:22982"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2393955",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
      },
      {
        "category": "external",
        "summary": "2393958",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22982.json"
      }
    ],
    "title": "Red Hat Security Advisory: python-kdcproxy security update",
    "tracking": {
      "current_release_date": "2026-04-20T08:28:29+00:00",
      "generator": {
        "date": "2026-04-20T08:28:29+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2025:22982",
      "initial_release_date": "2025-12-09T22:26:17+00:00",
      "revision_history": [
        {
          "date": "2025-12-09T22:26:17+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-09T22:26:17+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-20T08:28:29+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                  "product_id": "7Server-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_els:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python-kdcproxy-0:0.3.2-3.el7_9.3.src",
                "product": {
                  "name": "python-kdcproxy-0:0.3.2-3.el7_9.3.src",
                  "product_id": "python-kdcproxy-0:0.3.2-3.el7_9.3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-kdcproxy@0.3.2-3.el7_9.3?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
                "product": {
                  "name": "python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
                  "product_id": "python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-kdcproxy@0.3.2-3.el7_9.3?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-kdcproxy-0:0.3.2-3.el7_9.3.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch"
        },
        "product_reference": "python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-kdcproxy-0:0.3.2-3.el7_9.3.src as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
        },
        "product_reference": "python-kdcproxy-0:0.3.2-3.el7_9.3.src",
        "relates_to_product_reference": "7Server-ELS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59088",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "discovery_date": "2025-09-08T21:18:31.461000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393955"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request for a realm matching a DNS zone where they created SRV records pointing to arbitrary ports and hostnames (which may resolve to loopback or internal IP addresses). This vulnerability can be exploited to probe internal network topology and firewall rules, perform port scanning, and exfiltrate data. Deployments where\nthe \"use_dns\" setting is explicitly set to false are not affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
          "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393955",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59088",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-09T22:26:17+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:22982"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue before a final fix can be applied, set \"use_dns\" parameter to false in the global section of the kdcproxy.conf file. This will disable the use of DNS to find Active Directory servers so it may break the service if DNS is needed.",
          "product_ids": [
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59089",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-08T21:37:15.428000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393958"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server-side request forgery), they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC\u0027s response, kdcproxy copies the entire buffered stream into a new\nbuffer on each recv() call, even when the transfer is incomplete, causing excessive memory allocation and CPU usage. Additionally, kdcproxy accepts incoming response chunks as long as the received data length is not exactly equal to the length indicated in the response\nheader, even when individual chunks or the total buffer exceed the maximum length of a Kerberos message. This allows an attacker to send unbounded data until the connection timeout is reached (approximately 12 seconds), exhausting server memory or CPU resources. Multiple concurrent requests can cause accept queue overflow, denying service to legitimate clients.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
          "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393958",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59089",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1",
          "url": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-09T22:26:17+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:22982"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.noarch",
            "7Server-ELS:python-kdcproxy-0:0.3.2-3.el7_9.3.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering"
    }
  ]
}

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for python-kdcproxy is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV (CVE-2025-59088)\n\n* python-kdcproxy: Remote DoS via unbounded TCP upstream buffering (CVE-2025-59089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:21448",
        "url": "https://access.redhat.com/errata/RHSA-2025:21448"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2393955",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
      },
      {
        "category": "external",
        "summary": "2393958",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_21448.json"
      }
    ],
    "title": "Red Hat Security Advisory: python-kdcproxy security update",
    "tracking": {
      "current_release_date": "2026-04-20T08:28:26+00:00",
      "generator": {
        "date": "2026-04-20T08:28:26+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2025:21448",
      "initial_release_date": "2025-11-17T06:19:12+00:00",
      "revision_history": [
        {
          "date": "2025-11-17T06:19:12+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-11-17T06:19:12+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-20T08:28:26+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                  "product_id": "AppStream-9.2.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python-kdcproxy-0:1.0.0-7.el9_2.1.src",
                "product": {
                  "name": "python-kdcproxy-0:1.0.0-7.el9_2.1.src",
                  "product_id": "python-kdcproxy-0:1.0.0-7.el9_2.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-kdcproxy@1.0.0-7.el9_2.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch",
                "product": {
                  "name": "python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch",
                  "product_id": "python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kdcproxy@1.0.0-7.el9_2.1?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-kdcproxy-0:1.0.0-7.el9_2.1.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src"
        },
        "product_reference": "python-kdcproxy-0:1.0.0-7.el9_2.1.src",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
        },
        "product_reference": "python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59088",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "discovery_date": "2025-09-08T21:18:31.461000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393955"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request for a realm matching a DNS zone where they created SRV records pointing to arbitrary ports and hostnames (which may resolve to loopback or internal IP addresses). This vulnerability can be exploited to probe internal network topology and firewall rules, perform port scanning, and exfiltrate data. Deployments where\nthe \"use_dns\" setting is explicitly set to false are not affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
          "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393955",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59088",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-11-17T06:19:12+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
            "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:21448"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue before a final fix can be applied, set \"use_dns\" parameter to false in the global section of the kdcproxy.conf file. This will disable the use of DNS to find Active Directory servers so it may break the service if DNS is needed.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
            "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
            "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59089",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-08T21:37:15.428000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393958"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server-side request forgery), they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC\u0027s response, kdcproxy copies the entire buffered stream into a new\nbuffer on each recv() call, even when the transfer is incomplete, causing excessive memory allocation and CPU usage. Additionally, kdcproxy accepts incoming response chunks as long as the received data length is not exactly equal to the length indicated in the response\nheader, even when individual chunks or the total buffer exceed the maximum length of a Kerberos message. This allows an attacker to send unbounded data until the connection timeout is reached (approximately 12 seconds), exhausting server memory or CPU resources. Multiple concurrent requests can cause accept queue overflow, denying service to legitimate clients.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
          "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393958",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59089",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1",
          "url": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-11-17T06:19:12+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
            "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:21448"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
            "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:python-kdcproxy-0:1.0.0-7.el9_2.1.src",
            "AppStream-9.2.0.Z.E4S:python3-kdcproxy-0:1.0.0-7.el9_2.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering"
    }
  ]
}

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for python-kdcproxy is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV (CVE-2025-59088)\n\n* python-kdcproxy: Remote DoS via unbounded TCP upstream buffering (CVE-2025-59089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:21748",
        "url": "https://access.redhat.com/errata/RHSA-2025:21748"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2393955",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
      },
      {
        "category": "external",
        "summary": "2393958",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_21748.json"
      }
    ],
    "title": "Red Hat Security Advisory: python-kdcproxy security update",
    "tracking": {
      "current_release_date": "2026-04-20T08:28:26+00:00",
      "generator": {
        "date": "2026-04-20T08:28:26+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2025:21748",
      "initial_release_date": "2025-11-19T08:16:29+00:00",
      "revision_history": [
        {
          "date": "2025-11-19T08:16:29+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-11-19T08:16:29+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-20T08:28:26+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                  "product_id": "AppStream-9.4.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python-kdcproxy-0:1.0.0-7.el9_4.1.src",
                "product": {
                  "name": "python-kdcproxy-0:1.0.0-7.el9_4.1.src",
                  "product_id": "python-kdcproxy-0:1.0.0-7.el9_4.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-kdcproxy@1.0.0-7.el9_4.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch",
                "product": {
                  "name": "python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch",
                  "product_id": "python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kdcproxy@1.0.0-7.el9_4.1?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-kdcproxy-0:1.0.0-7.el9_4.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src"
        },
        "product_reference": "python-kdcproxy-0:1.0.0-7.el9_4.1.src",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
        },
        "product_reference": "python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59088",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "discovery_date": "2025-09-08T21:18:31.461000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393955"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request for a realm matching a DNS zone where they created SRV records pointing to arbitrary ports and hostnames (which may resolve to loopback or internal IP addresses). This vulnerability can be exploited to probe internal network topology and firewall rules, perform port scanning, and exfiltrate data. Deployments where\nthe \"use_dns\" setting is explicitly set to false are not affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
          "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393955",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59088",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-11-19T08:16:29+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
            "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:21748"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue before a final fix can be applied, set \"use_dns\" parameter to false in the global section of the kdcproxy.conf file. This will disable the use of DNS to find Active Directory servers so it may break the service if DNS is needed.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
            "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
            "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59089",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-08T21:37:15.428000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393958"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server-side request forgery), they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC\u0027s response, kdcproxy copies the entire buffered stream into a new\nbuffer on each recv() call, even when the transfer is incomplete, causing excessive memory allocation and CPU usage. Additionally, kdcproxy accepts incoming response chunks as long as the received data length is not exactly equal to the length indicated in the response\nheader, even when individual chunks or the total buffer exceed the maximum length of a Kerberos message. This allows an attacker to send unbounded data until the connection timeout is reached (approximately 12 seconds), exhausting server memory or CPU resources. Multiple concurrent requests can cause accept queue overflow, denying service to legitimate clients.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
          "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393958",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59089",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1",
          "url": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-11-19T08:16:29+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
            "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:21748"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
            "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:python-kdcproxy-0:1.0.0-7.el9_4.1.src",
            "AppStream-9.4.0.Z.EUS:python3-kdcproxy-0:1.0.0-7.el9_4.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering"
    }
  ]
}

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for the idm:DL1 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV (CVE-2025-59088)\n\n* python-kdcproxy: Remote DoS via unbounded TCP upstream buffering (CVE-2025-59089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:21820",
        "url": "https://access.redhat.com/errata/RHSA-2025:21820"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2393955",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
      },
      {
        "category": "external",
        "summary": "2393958",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_21820.json"
      }
    ],
    "title": "Red Hat Security Advisory: idm:DL1 security update",
    "tracking": {
      "current_release_date": "2026-04-20T08:28:28+00:00",
      "generator": {
        "date": "2026-04-20T08:28:28+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2025:21820",
      "initial_release_date": "2025-11-20T08:10:36+00:00",
      "revision_history": [
        {
          "date": "2025-11-20T08:10:36+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-11-20T08:10:36+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-20T08:28:28+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
                "product": {
                  "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src (idm:DL1)",
                  "product_id": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/bind-dyndb-ldap@11.6-2.module%2Bel8.4.0%2B21736%2B855b82c8.1?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
                "product": {
                  "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src (idm:DL1)",
                  "product_id": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/custodia@0.6.0-3.module%2Bel8.1.0%2B4098%2Bf286395e?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
                "product": {
                  "name": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src (idm:DL1)",
                  "product_id": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
                "product": {
                  "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src (idm:DL1)",
                  "product_id": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-healthcheck@0.7-3.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
                "product": {
                  "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src (idm:DL1)",
                  "product_id": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opendnssec@2.1.7-1.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
                "product": {
                  "name": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src (idm:DL1)",
                  "product_id": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-jwcrypto@0.5.0-1.module%2Bel8.1.0%2B4098%2Bf286395e?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
                "product": {
                  "name": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src (idm:DL1)",
                  "product_id": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-kdcproxy@0.4-5.module%2Bel8.4.0%2B23621%2B13d4146a.1?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
                "product": {
                  "name": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src (idm:DL1)",
                  "product_id": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-qrcode@5.1-12.module%2Bel8.1.0%2B4098%2Bf286395e?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
                "product": {
                  "name": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src (idm:DL1)",
                  "product_id": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-yubico@1.3.2-9.module%2Bel8.1.0%2B4098%2Bf286395e?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
                "product": {
                  "name": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src (idm:DL1)",
                  "product_id": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pyusb@1.0.0-9.module%2Bel8.1.0%2B4098%2Bf286395e?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
                "product": {
                  "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src (idm:DL1)",
                  "product_id": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/slapi-nis@0.56.6-2.1.module%2Bel8.4.0%2B12579%2B0538eac8?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
                "product": {
                  "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src (idm:DL1)",
                  "product_id": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/softhsm@2.6.0-5.module%2Bel8.4.0%2B10227%2B076cd560?arch=src\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
                "product": {
                  "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1)",
                  "product_id": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/bind-dyndb-ldap@11.6-2.module%2Bel8.4.0%2B21736%2B855b82c8.1?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
                "product": {
                  "name": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1)",
                  "product_id": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/bind-dyndb-ldap-debuginfo@11.6-2.module%2Bel8.4.0%2B21736%2B855b82c8.1?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
                "product": {
                  "name": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1)",
                  "product_id": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/bind-dyndb-ldap-debugsource@11.6-2.module%2Bel8.4.0%2B21736%2B855b82c8.1?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-client@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-client-debuginfo@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-client-epn@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-client-samba@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-debuginfo@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-debugsource@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-server@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-server-debuginfo@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-server-trust-ad@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                "product": {
                  "name": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1)",
                  "product_id": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-server-trust-ad-debuginfo@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
                "product": {
                  "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1)",
                  "product_id": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opendnssec@2.1.7-1.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
                "product": {
                  "name": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1)",
                  "product_id": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opendnssec-debuginfo@2.1.7-1.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
                "product": {
                  "name": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1)",
                  "product_id": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opendnssec-debugsource@2.1.7-1.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
                "product": {
                  "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1)",
                  "product_id": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/slapi-nis@0.56.6-2.1.module%2Bel8.4.0%2B12579%2B0538eac8?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
                "product": {
                  "name": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1)",
                  "product_id": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/slapi-nis-debuginfo@0.56.6-2.1.module%2Bel8.4.0%2B12579%2B0538eac8?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
                "product": {
                  "name": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1)",
                  "product_id": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/slapi-nis-debugsource@0.56.6-2.1.module%2Bel8.4.0%2B12579%2B0538eac8?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                "product": {
                  "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1)",
                  "product_id": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/softhsm@2.6.0-5.module%2Bel8.4.0%2B10227%2B076cd560?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                "product": {
                  "name": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1)",
                  "product_id": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/softhsm-debuginfo@2.6.0-5.module%2Bel8.4.0%2B10227%2B076cd560?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                "product": {
                  "name": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1)",
                  "product_id": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/softhsm-debugsource@2.6.0-5.module%2Bel8.4.0%2B10227%2B076cd560?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                "product": {
                  "name": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1)",
                  "product_id": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/softhsm-devel@2.6.0-5.module%2Bel8.4.0%2B10227%2B076cd560?arch=x86_64\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/custodia@0.6.0-3.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-client-common@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-common@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
                "product": {
                  "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch (idm:DL1)",
                  "product_id": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-healthcheck@0.7-3.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
                "product": {
                  "name": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch (idm:DL1)",
                  "product_id": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-healthcheck-core@0.7-3.module%2Bel8.4.0%2B9007%2B5084bdd8?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-python-compat@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-selinux@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-server-common@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipa-server-dns@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-custodia@0.6.0-3.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-ipaclient@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-ipalib@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-ipaserver@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                "product": {
                  "name": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1)",
                  "product_id": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-ipatests@4.9.2-10.module%2Bel8.4.0%2B23621%2B13d4146a.4?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-jwcrypto@0.5.0-1.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
                "product": {
                  "name": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch (idm:DL1)",
                  "product_id": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kdcproxy@0.4-5.module%2Bel8.4.0%2B23621%2B13d4146a.1?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-pyusb@1.0.0-9.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-qrcode@5.1-12.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-qrcode-core@5.1-12.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                "product": {
                  "name": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch (idm:DL1)",
                  "product_id": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-yubico@1.3.2-9.module%2Bel8.1.0%2B4098%2Bf286395e?arch=noarch\u0026rpmmod=idm:DL1:8040020251103205102:5b01ab7e"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1"
        },
        "product_reference": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1"
        },
        "product_reference": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1"
        },
        "product_reference": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1"
        },
        "product_reference": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1"
        },
        "product_reference": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1"
        },
        "product_reference": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1"
        },
        "product_reference": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1"
        },
        "product_reference": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1"
        },
        "product_reference": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1"
        },
        "product_reference": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1"
        },
        "product_reference": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1"
        },
        "product_reference": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1"
        },
        "product_reference": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1"
        },
        "product_reference": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1"
        },
        "product_reference": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1"
        },
        "product_reference": "bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1"
        },
        "product_reference": "ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1"
        },
        "product_reference": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1"
        },
        "product_reference": "ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1"
        },
        "product_reference": "ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1"
        },
        "product_reference": "ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1"
        },
        "product_reference": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1"
        },
        "product_reference": "opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1"
        },
        "product_reference": "opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1"
        },
        "product_reference": "opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1"
        },
        "product_reference": "python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1"
        },
        "product_reference": "python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1"
        },
        "product_reference": "python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1"
        },
        "product_reference": "python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1"
        },
        "product_reference": "pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1"
        },
        "product_reference": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1"
        },
        "product_reference": "slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1"
        },
        "product_reference": "slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1"
        },
        "product_reference": "slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1"
        },
        "product_reference": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64 (idm:DL1) as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        },
        "product_reference": "softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59088",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "discovery_date": "2025-09-08T21:18:31.461000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393955"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request for a realm matching a DNS zone where they created SRV records pointing to arbitrary ports and hostnames (which may resolve to loopback or internal IP addresses). This vulnerability can be exploited to probe internal network topology and firewall rules, perform port scanning, and exfiltrate data. Deployments where\nthe \"use_dns\" setting is explicitly set to false are not affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393955",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393955"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59088",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59088"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-11-20T08:10:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:21820"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue before a final fix can be applied, set \"use_dns\" parameter to false in the global section of the kdcproxy.conf file. This will disable the use of DNS to find Active Directory servers so it may break the service if DNS is needed.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Arad Inbar"
          ]
        }
      ],
      "cve": "CVE-2025-59089",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-08T21:37:15.428000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2393958"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server-side request forgery), they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC\u0027s response, kdcproxy copies the entire buffered stream into a new\nbuffer on each recv() call, even when the transfer is incomplete, causing excessive memory allocation and CPU usage. Additionally, kdcproxy accepts incoming response chunks as long as the received data length is not exactly equal to the length indicated in the response\nheader, even when individual chunks or the total buffer exceed the maximum length of a Kerberos message. This allows an attacker to send unbounded data until the connection timeout is reached (approximately 12 seconds), exhausting server memory or CPU resources. Multiple concurrent requests can cause accept queue overflow, denying service to legitimate clients.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
          "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "RHBZ#2393958",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393958"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-59089",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59089"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1",
          "url": "https://github.com/latchset/kdcproxy/commit/c7675365aa20be11f03247966336c7613cac84e1"
        },
        {
          "category": "external",
          "summary": "https://github.com/latchset/kdcproxy/pull/68",
          "url": "https://github.com/latchset/kdcproxy/pull/68"
        }
      ],
      "release_date": "2025-11-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-11-20T08:10:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:21820"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.AUS:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.AUS:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debuginfo-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:bind-dyndb-ldap-debugsource-0:11.6-2.module+el8.4.0+21736+855b82c8.1.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-epn-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-client-samba-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-debugsource-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-0:0.7-3.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-healthcheck-core-0:0.7-3.module+el8.4.0+9007+5084bdd8.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-python-compat-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-selinux-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-common-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-dns-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:ipa-server-trust-ad-debuginfo-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debuginfo-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:opendnssec-debugsource-0:2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-custodia-0:0.6.0-3.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaclient-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipalib-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipaserver-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-ipatests-0:4.9.2-10.module+el8.4.0+23621+13d4146a.4.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-jwcrypto-0:0.5.0-1.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-kdcproxy-0:0.4-5.module+el8.4.0+23621+13d4146a.1.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-qrcode-core-0:5.1-12.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:python3-yubico-0:1.3.2-9.module+el8.1.0+4098+f286395e.noarch::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:pyusb-0:1.0.0-9.module+el8.1.0+4098+f286395e.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debuginfo-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:slapi-nis-debugsource-0:0.56.6-2.1.module+el8.4.0+12579+0538eac8.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.src::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debuginfo-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-debugsource-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1",
            "AppStream-8.4.0.Z.EUS.EXTENSION:softhsm-devel-0:2.6.0-5.module+el8.4.0+10227+076cd560.x86_64::idm:DL1"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "python-kdcproxy: Remote DoS via unbounded TCP upstream buffering"
    }
  ]
}