rhsa-2022_6290
Vulnerability from csaf_redhat
Published
2022-09-01 01:24
Modified
2024-11-13 23:47
Summary
Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.0 security and bug fix update
Notes
Topic
OpenShift API for Data Protection (OADP) 1.1.0 is now available.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
Details
OpenShift API for Data Protection (OADP) enables you to back up and restore application resources, persistent volume data, and internal container images to external backup storage. OADP enables both file system-based and snapshot-based backups for persistent volumes.
Security Fix(es) from Bugzilla:
* golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631)
* prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)
* golang: encoding/pem: fix stack overflow in Decode (CVE-2022-24675)
* golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327)
* golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "OpenShift API for Data Protection (OADP) 1.1.0 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "OpenShift API for Data Protection (OADP) enables you to back up and restore application resources, persistent volume data, and internal container images to external backup storage. OADP enables both file system-based and snapshot-based backups for persistent volumes.\n\nSecurity Fix(es) from Bugzilla:\n\n* golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631)\n\n* prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)\n\n* golang: encoding/pem: fix stack overflow in Decode (CVE-2022-24675)\n\n* golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327)\n\n* golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2022:6290", "url": "https://access.redhat.com/errata/RHSA-2022:6290" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "2045880", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045880" }, { "category": "external", "summary": "2077688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688" }, { "category": "external", "summary": "2077689", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689" }, { "category": "external", "summary": "2092793", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793" }, { "category": "external", "summary": "2107342", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342" }, { "category": "external", "summary": "OADP-145", "url": "https://issues.redhat.com/browse/OADP-145" }, { "category": "external", "summary": "OADP-154", "url": "https://issues.redhat.com/browse/OADP-154" }, { "category": "external", "summary": "OADP-194", "url": "https://issues.redhat.com/browse/OADP-194" }, { "category": "external", "summary": "OADP-199", "url": "https://issues.redhat.com/browse/OADP-199" }, { "category": "external", "summary": "OADP-224", "url": "https://issues.redhat.com/browse/OADP-224" }, { "category": "external", "summary": "OADP-225", "url": "https://issues.redhat.com/browse/OADP-225" }, { "category": "external", "summary": "OADP-234", "url": "https://issues.redhat.com/browse/OADP-234" }, { "category": "external", "summary": "OADP-324", "url": "https://issues.redhat.com/browse/OADP-324" }, { "category": "external", "summary": "OADP-382", "url": "https://issues.redhat.com/browse/OADP-382" }, { "category": "external", "summary": "OADP-422", "url": "https://issues.redhat.com/browse/OADP-422" }, { "category": "external", "summary": "OADP-423", "url": "https://issues.redhat.com/browse/OADP-423" }, { "category": "external", "summary": "OADP-478", "url": "https://issues.redhat.com/browse/OADP-478" }, { "category": "external", "summary": "OADP-528", "url": "https://issues.redhat.com/browse/OADP-528" }, { "category": "external", "summary": "OADP-533", "url": "https://issues.redhat.com/browse/OADP-533" }, { "category": "external", "summary": "OADP-538", "url": "https://issues.redhat.com/browse/OADP-538" }, { "category": "external", "summary": "OADP-552", "url": "https://issues.redhat.com/browse/OADP-552" }, { "category": "external", "summary": "OADP-558", "url": "https://issues.redhat.com/browse/OADP-558" }, { "category": "external", "summary": "OADP-585", "url": "https://issues.redhat.com/browse/OADP-585" }, { "category": "external", "summary": "OADP-586", "url": "https://issues.redhat.com/browse/OADP-586" }, { "category": "external", "summary": "OADP-592", "url": "https://issues.redhat.com/browse/OADP-592" }, { "category": "external", "summary": "OADP-597", "url": "https://issues.redhat.com/browse/OADP-597" }, { "category": "external", "summary": "OADP-598", "url": "https://issues.redhat.com/browse/OADP-598" }, { "category": "external", "summary": "OADP-599", "url": "https://issues.redhat.com/browse/OADP-599" }, { "category": "external", "summary": "OADP-600", "url": "https://issues.redhat.com/browse/OADP-600" }, { "category": "external", "summary": "OADP-602", "url": "https://issues.redhat.com/browse/OADP-602" }, { "category": "external", "summary": "OADP-605", "url": "https://issues.redhat.com/browse/OADP-605" }, { "category": "external", "summary": "OADP-607", "url": "https://issues.redhat.com/browse/OADP-607" }, { "category": "external", "summary": "OADP-610", "url": "https://issues.redhat.com/browse/OADP-610" }, { "category": "external", "summary": "OADP-613", "url": "https://issues.redhat.com/browse/OADP-613" }, { "category": "external", "summary": "OADP-637", "url": "https://issues.redhat.com/browse/OADP-637" }, { "category": "external", "summary": "OADP-643", "url": "https://issues.redhat.com/browse/OADP-643" }, { "category": "external", "summary": "OADP-644", "url": "https://issues.redhat.com/browse/OADP-644" }, { "category": "external", "summary": "OADP-648", "url": "https://issues.redhat.com/browse/OADP-648" }, { "category": "external", "summary": "OADP-652", "url": "https://issues.redhat.com/browse/OADP-652" }, { "category": "external", "summary": "OADP-655", "url": "https://issues.redhat.com/browse/OADP-655" }, { "category": "external", "summary": "OADP-660", "url": "https://issues.redhat.com/browse/OADP-660" }, { "category": "external", "summary": "OADP-698", "url": "https://issues.redhat.com/browse/OADP-698" }, { "category": "external", "summary": "OADP-715", "url": "https://issues.redhat.com/browse/OADP-715" }, { "category": "external", "summary": "OADP-716", "url": "https://issues.redhat.com/browse/OADP-716" }, { "category": "external", "summary": "OADP-736", "url": "https://issues.redhat.com/browse/OADP-736" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6290.json" } ], "title": "Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.0 security and bug fix update", "tracking": { "current_release_date": "2024-11-13T23:47:56+00:00", "generator": { "date": "2024-11-13T23:47:56+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2022:6290", "initial_release_date": "2022-09-01T01:24:16+00:00", "revision_history": [ { "date": "2022-09-01T01:24:16+00:00", "number": "1", "summary": "Initial version" }, { "date": "2022-09-01T01:24:16+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-13T23:47:56+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "8Base-OADP-1.1", "product": { "name": "8Base-OADP-1.1", "product_id": "8Base-OADP-1.1", "product_identification_helper": { "cpe": "cpe:/a:redhat:openshift_api_data_protection:1.1::el8" } } } ], "category": "product_family", "name": "OpenShift API for Data Protection" }, { "branches": [ { "category": "product_version", "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "product": { "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "product_id": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel8\u0026tag=1.1.0-21" } } }, { "category": "product_version", "name": "oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "product": { "name": "oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "product_id": "oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel8\u0026tag=1.1.0-63" } } }, { "category": "product_version", "name": "oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x", "product": { "name": "oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x", "product_id": "oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1.1.0-74" } } }, { "category": "product_version", "name": "oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "product": { "name": "oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "product_id": "oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-rhel8-operator\u0026tag=1.1.0-50" } } }, { "category": "product_version", "name": "oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "product": { "name": "oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "product_id": "oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel8\u0026tag=1.1.0-27" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "product": { "name": "oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "product_id": "oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel8\u0026tag=1.1.0-20" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "product": { "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "product_id": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "product": { "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "product_id": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-csi-rhel8\u0026tag=1.1.0-25" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "product": { "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "product_id": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "product": { "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "product_id": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "product": { "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "product_id": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-restic-restore-helper-rhel8\u0026tag=1.1.0-25" } } }, { "category": "product_version", "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "product": { "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "product_id": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "product_identification_helper": { "purl": "pkg:oci/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-volume-snapshot-mover-rhel8\u0026tag=1.1.0-24" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "product": { "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "product_id": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel8\u0026tag=1.1.0-21" } } }, { "category": "product_version", "name": "oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "product": { "name": "oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "product_id": "oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel8\u0026tag=1.1.0-63" } } }, { "category": "product_version", "name": "oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "product": { "name": "oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "product_id": "oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1.1.0-74" } } }, { "category": "product_version", "name": "oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "product": { "name": "oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "product_id": "oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-rhel8-operator\u0026tag=1.1.0-50" } } }, { "category": "product_version", "name": "oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "product": { "name": "oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "product_id": "oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel8\u0026tag=1.1.0-27" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "product": { "name": "oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "product_id": "oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel8\u0026tag=1.1.0-20" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "product": { "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "product_id": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "product": { "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "product_id": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-csi-rhel8\u0026tag=1.1.0-25" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "product": { "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "product_id": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "product": { "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "product_id": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "product": { "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "product_id": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-restic-restore-helper-rhel8\u0026tag=1.1.0-25" } } }, { "category": "product_version", "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64", "product": { "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64", "product_id": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64", "product_identification_helper": { "purl": "pkg:oci/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-volume-snapshot-mover-rhel8\u0026tag=1.1.0-24" } } } ], "category": "architecture", "name": "amd64" }, { "branches": [ { "category": "product_version", "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "product": { "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "product_id": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel8\u0026tag=1.1.0-21" } } }, { "category": "product_version", "name": "oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "product": { "name": "oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "product_id": "oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel8\u0026tag=1.1.0-63" } } }, { "category": "product_version", "name": "oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "product": { "name": "oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "product_id": "oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1.1.0-74" } } }, { "category": "product_version", "name": "oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "product": { "name": "oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "product_id": "oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-rhel8-operator\u0026tag=1.1.0-50" } } }, { "category": "product_version", "name": "oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "product": { "name": "oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "product_id": "oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel8\u0026tag=1.1.0-27" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "product": { "name": "oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "product_id": "oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel8\u0026tag=1.1.0-20" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "product": { "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "product_id": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "product": { "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "product_id": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-csi-rhel8\u0026tag=1.1.0-25" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "product": { "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "product_id": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "product": { "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "product_id": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel8\u0026tag=1.1.0-17" } } }, { "category": "product_version", "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "product": { "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "product_id": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-restic-restore-helper-rhel8\u0026tag=1.1.0-25" } } }, { "category": "product_version", "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "product": { "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "product_id": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "product_identification_helper": { "purl": "pkg:oci/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-volume-snapshot-mover-rhel8\u0026tag=1.1.0-24" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le" }, "product_reference": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64" }, "product_reference": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x" }, "product_reference": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x" }, "product_reference": "oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le" }, "product_reference": "oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64" }, "product_reference": "oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le" }, "product_reference": "oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64" }, "product_reference": "oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" }, "product_reference": "oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x" }, "product_reference": "oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64" }, "product_reference": "oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le" }, "product_reference": "oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x" }, "product_reference": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64" }, "product_reference": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le" }, "product_reference": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64" }, "product_reference": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le" }, "product_reference": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x" }, "product_reference": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x" }, "product_reference": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64" }, "product_reference": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le" }, "product_reference": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64" }, "product_reference": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le" }, "product_reference": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x" }, "product_reference": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x" }, "product_reference": "oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le" }, "product_reference": "oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64" }, "product_reference": "oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le" }, "product_reference": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64" }, "product_reference": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x" }, "product_reference": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64" }, "product_reference": "oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le" }, "product_reference": "oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x" }, "product_reference": "oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le" }, "product_reference": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x" }, "product_reference": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "relates_to_product_reference": "8Base-OADP-1.1" }, { "category": "default_component_of", "full_product_name": { "name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64 as a component of 8Base-OADP-1.1", "product_id": "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" }, "product_reference": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64", "relates_to_product_reference": "8Base-OADP-1.1" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-21698", "cwe": { "id": "CWE-772", "name": "Missing Release of Resource after Effective Lifetime" }, "discovery_date": "2022-01-19T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2045880" } ], "notes": [ { "category": "description", "text": "A denial of service attack was found in prometheus/client_golang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "prometheus/client_golang: Denial of service using InstrumentHandlerCounter", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has been rated as having a moderate impact for two main reasons. The opportunity for a Denial of Service is limited to the golang runtime. In the case of OpenShift Container Platform, this would be restricted within each individual container. Additionally, this is in alignment with upstream\u0027s (the Prometheus project) impact rating.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64" ], "known_not_affected": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-21698" }, { "category": "external", "summary": "RHBZ#2045880", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045880" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-21698", "url": "https://www.cve.org/CVERecord?id=CVE-2022-21698" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-21698", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21698" }, { "category": "external", "summary": "https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p", "url": "https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p" } ], "release_date": "2022-02-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-09-01T01:24:16+00:00", "details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:6290" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "prometheus/client_golang: Denial of service using InstrumentHandlerCounter" }, { "cve": "CVE-2022-24675", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)" }, "discovery_date": "2022-04-21T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2077688" } ], "notes": [ { "category": "description", "text": "A buffer overflow flaw was found in Golang\u0027s library encoding/pem. This flaw allows an attacker to use a large PEM input (more than 5 MB), causing a stack overflow in Decode, which leads to a loss of availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "golang: encoding/pem: fix stack overflow in Decode", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 7, 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope.\n\nRed Hat Developer Tools - Compilers (go-toolset-1.16-golang \u0026 go-toolset-1.17-golang), ships the vulnerable code and affected by this vulnerability.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "known_not_affected": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-24675" }, { "category": "external", "summary": "RHBZ#2077688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24675", "url": "https://www.cve.org/CVERecord?id=CVE-2022-24675" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24675", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24675" }, { "category": "external", "summary": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8", "url": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8" } ], "release_date": "2022-04-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-09-01T01:24:16+00:00", "details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:6290" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "golang: encoding/pem: fix stack overflow in Decode" }, { "cve": "CVE-2022-28327", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2022-04-21T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2077689" } ], "notes": [ { "category": "description", "text": "An integer overflow flaw was found in Golang\u0027s crypto/elliptic library. This flaw allows an attacker to use a crafted scaler input longer than 32 bytes, causing P256().ScalarMult or P256().ScalarBaseMult to panic, leading to a loss of availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "golang: crypto/elliptic: panic caused by oversized scalar", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 7, 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nRed Hat Developer Tools - Compilers (go-toolset-1.16-golang \u0026 go-toolset-1.17-golang), ships the vulnerable code and affected by this vulnerability.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "known_not_affected": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-28327" }, { "category": "external", "summary": "RHBZ#2077689", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-28327", "url": "https://www.cve.org/CVERecord?id=CVE-2022-28327" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28327", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28327" }, { "category": "external", "summary": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8", "url": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8" } ], "release_date": "2022-04-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-09-01T01:24:16+00:00", "details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:6290" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "golang: crypto/elliptic: panic caused by oversized scalar" }, { "cve": "CVE-2022-30629", "cwe": { "id": "CWE-331", "name": "Insufficient Entropy" }, "discovery_date": "2022-06-02T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2092793" } ], "notes": [ { "category": "description", "text": "A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption.", "title": "Vulnerability description" }, { "category": "summary", "text": "golang: crypto/tls: session tickets lack random ticket_age_add", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "known_not_affected": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-30629" }, { "category": "external", "summary": "RHBZ#2092793", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30629", "url": "https://www.cve.org/CVERecord?id=CVE-2022-30629" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30629", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30629" }, { "category": "external", "summary": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg", "url": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg" } ], "release_date": "2022-06-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-09-01T01:24:16+00:00", "details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:6290" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.1, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N", "version": "3.1" }, "products": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "golang: crypto/tls: session tickets lack random ticket_age_add" }, { "cve": "CVE-2022-30631", "cwe": { "id": "CWE-1325", "name": "Improperly Controlled Sequential Memory Allocation" }, "discovery_date": "2022-07-14T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2107342" } ], "notes": [ { "category": "description", "text": "A flaw was found in golang. Calling the Reader, Read method on an archive that contains a large number of concatenated 0-length compressed files can cause a panic issue due to stack exhaustion.", "title": "Vulnerability description" }, { "category": "summary", "text": "golang: compress/gzip: stack exhaustion in Reader.Read", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "known_not_affected": [ "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:d7441686f4447f6b600c08c8d697e4db91b8b927554df6785d61a8d851baacf0_amd64", "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:dcae0dc90e97361b931ab189f52021a3a4add42fd02033053f32924580af4dc5_s390x" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-30631" }, { "category": "external", "summary": "RHBZ#2107342", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30631", "url": "https://www.cve.org/CVERecord?id=CVE-2022-30631" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30631", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30631" }, { "category": "external", "summary": "https://go.dev/issue/53168", "url": "https://go.dev/issue/53168" }, { "category": "external", "summary": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" } ], "release_date": "2022-07-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-09-01T01:24:16+00:00", "details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:6290" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:649a065b112210ed1248ba2cadecc3d522b888239dc73942934e526fba1d69ad_ppc64le", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64", "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:cde730978fa438855891755309c3bb75dc38771f1a94f9ff26a0a1b31a129f01_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:183d6de4eed893e0a76d661fdc13858e57a2ed5aeb34f3be6cb6850ef180d141_s390x", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le", "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:993c32f9a9ceba160e76fc2200deca5675506c00f2411bc1dbb16c7458789d5d_s390x", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64", "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:eb2965df49c5ff2d53be06b7b4d488510f569c7aaf567999e6d467556572814d_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:687c4ab44bd97d033fd3d7fd23d9e0bc011d006608cdfedab668a1fde874d54f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:cb225573b7adf5956fb12c01e43ba1f04d80e4f820c9aa6af6a50924980c1ea2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:36c9326a4b96448cb00582d7296270a927761ba0f0616fb8ed4c5987d4e8a70c_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:cd92d9d091b62421632d941db6a9b2c33c1965cf4112a9fb036a09ebe988b91c_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7e8544cc441e90e3a44f333f418959f2afe106a04bd117c42a5c482ed7e74d99_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:24b9694e68a16a51220789c91dc00ead20c531221de4a5bae7d9fa7107cbe707_amd64", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:0f90a21e45f9d76b6abedcd1b6ffe2843045163702b5f9038f715bf3db0e1b4e_s390x", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:bab55f61f70fe687df984186240c76c5b10f7b5362b2f9a4e21a47d4494d02f2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:22db35503cef946d1a193f5531017a456d3b34bc26d2b431954f5d385b7be9d8_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64", "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:45ae2d99bc7d4c93bace74f285805faa0ad27561037b6b2406e6c4e86ac669f7_s390x", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le", "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x", "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:cde9184ab5f6fd8f4448913d802d0dcdf2a6830facc1a4732dec6eb09bf1b273_amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "golang: compress/gzip: stack exhaustion in Reader.Read" } ] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.