RHSA-2024:1753
Vulnerability from csaf_redhat - Published: 2024-04-10 12:41 - Updated: 2026-03-20 18:16Summary
Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.1 security update
Severity
Important
Notes
Topic: An update is now available for Red Hat OpenShift GitOps v1.12.1. Red Hat
Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Errata Advisory for Red Hat OpenShift GitOps v1.12.1.
Security Fix(es):
* argo-cd: Denial of Service Due to Unsafe Array Modification in Multi-threaded Environment (CVE-2024-21661)
* argo-cd: Users with `create` but not `override` privileges can perform local sync (CVE-2023-50726)
* argo-cd: Bypassing Brute Force Protection via Application Crash and In-Memory Data Loss (CVE-2024-21652)
* argo-cd: uncontrolled resource consumption vulnerability (CVE-2024-29893)
* argo-cd: Bypassing Rate Limit and Brute Force Protection Using Cache Overflow (CVE-2024-21662)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the Argo CD package. An improper validation bug allows users to sync local manifests on app creation, who have create privileges but not override privileges. All other restrictions, including AppProject restrictions, are still enforced. The only restriction that is not enforced is that the manifests come from some approved git/Helm/OCI source.
6.4 (Medium)
Affected products
Fixed
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A bypass of brute force protection flaw was found in Argo CD. Since login attempts are stored only in memory, every time the server restarts, that number is lost and unlimited login attempts can be made. It is possible to bypass brute force protections by chaining this issue with a denial of service issue, such as CVE-2024-21661.
5.4 (Medium)
Affected products
Fixed
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Argo CD that may result in a remote denial of service. The expireOldFailedAttempts function modifies an array while it is being iterated over. This issue may cause an application crash when executed in a multi-threaded environment if two threads interact with the same array simultaneously.
7.5 (High)
Affected products
Fixed
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in Argo CD, where the rate limit for login attempts may be bypassed due to an incomplete fix for CVE-2020-8827. The cache-based mechanism is limited to a `defaultMaxCacheSize` of 1000 entries. An attacker can overflow this cache by sending excessive login attempts for different users, thereby pushing out the admin account's failed attempts and effectively resetting the rate limit for that account. This enables attackers to perform brute force attacks at an accelerated rate, especially targeting the default admin account.
5.4 (Medium)
Affected products
Fixed
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
The ArgoCD repo-server component is vulnerable to a denial of service attack, where it is possible to crash the repo server component through an out-of-memory error by pointing it to a malicious Helm registry. The loadRepoIndex() function in the ArgoCD's helm package does not limit the size or time while fetching the data. It fetches and creates a byte slice from the retrieved data in one go. If the registry is implemented to push data continuously, the repo server will keep allocating memory until it runs out.
6.5 (Medium)
Affected products
Fixed
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
41 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenShift GitOps v1.12.1. Red Hat\nProduct Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Errata Advisory for Red Hat OpenShift GitOps v1.12.1.\n\nSecurity Fix(es):\n\n* argo-cd: Denial of Service Due to Unsafe Array Modification in Multi-threaded Environment (CVE-2024-21661)\n\n* argo-cd: Users with `create` but not `override` privileges can perform local sync (CVE-2023-50726)\n\n* argo-cd: Bypassing Brute Force Protection via Application Crash and In-Memory Data Loss (CVE-2024-21652)\n\n* argo-cd: uncontrolled resource consumption vulnerability (CVE-2024-29893)\n\n* argo-cd: Bypassing Rate Limit and Brute Force Protection Using Cache Overflow (CVE-2024-21662)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:1753",
"url": "https://access.redhat.com/errata/RHSA-2024:1753"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2269479",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269479"
},
{
"category": "external",
"summary": "2270170",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270170"
},
{
"category": "external",
"summary": "2270173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270173"
},
{
"category": "external",
"summary": "2270182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270182"
},
{
"category": "external",
"summary": "2272211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272211"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1753.json"
}
],
"title": "Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.1 security update",
"tracking": {
"current_release_date": "2026-03-20T18:16:47+00:00",
"generator": {
"date": "2026-03-20T18:16:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.3"
}
},
"id": "RHSA-2024:1753",
"initial_release_date": "2024-04-10T12:41:59+00:00",
"revision_history": [
{
"date": "2024-04-10T12:41:59+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-04-10T12:41:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-20T18:16:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.12",
"product": {
"name": "Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.12::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.12",
"product": {
"name": "Red Hat OpenShift GitOps 1.12",
"product_id": "9Base-GitOps-1.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.12::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.12.1-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"product": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"product_id": "openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.12.1-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.12.1-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.12.1-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.12.1-2"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.12.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.12.1-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64"
},
"product_reference": "openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"relates_to_product_reference": "8Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"relates_to_product_reference": "9Base-GitOps-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64 as a component of Red Hat OpenShift GitOps 1.12",
"product_id": "9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64",
"relates_to_product_reference": "9Base-GitOps-1.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-50726",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-03-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2269479"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Argo CD package. An improper validation bug allows users to sync local manifests on app creation, who have create privileges but not override privileges. All other restrictions, including AppProject restrictions, are still enforced. The only restriction that is not enforced is that the manifests come from some approved git/Helm/OCI source.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "CD: Users with `create` but not `override` privileges can perform local sync",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-50726"
},
{
"category": "external",
"summary": "RHBZ#2269479",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269479"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-50726",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50726"
},
{
"category": "external",
"summary": "https://argo-cd.readthedocs.io/en/latest/operator-manual/rbac",
"url": "https://argo-cd.readthedocs.io/en/latest/operator-manual/rbac"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/3b8f673f06c2d228e01cbc830e5cb57cef008978",
"url": "https://github.com/argoproj/argo-cd/commit/3b8f673f06c2d228e01cbc830e5cb57cef008978"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-g623-jcgg-mhmm",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-g623-jcgg-mhmm"
}
],
"release_date": "2024-03-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-10T12:41:59+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:1753"
},
{
"category": "workaround",
"details": "To mitigate the risk of branch protection bypass, remove applications and create RBAC access.",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "CD: Users with `create` but not `override` privileges can perform local sync"
},
{
"cve": "CVE-2024-21652",
"cwe": {
"id": "CWE-307",
"name": "Improper Restriction of Excessive Authentication Attempts"
},
"discovery_date": "2024-03-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270170"
}
],
"notes": [
{
"category": "description",
"text": "A bypass of brute force protection flaw was found in Argo CD. Since login attempts are stored only in memory, every time the server restarts, that number is lost and unlimited login attempts can be made. It is possible to bypass brute force protections by chaining this issue with a denial of service issue, such as CVE-2024-21661.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argo-cd: Bypassing Brute Force Protection via Application Crash and In-Memory Data Loss",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21652"
},
{
"category": "external",
"summary": "RHBZ#2270170",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270170"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21652"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21652",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21652"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-x32m-mvfj-52xv",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-x32m-mvfj-52xv"
}
],
"release_date": "2024-03-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-10T12:41:59+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:1753"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "argo-cd: Bypassing Brute Force Protection via Application Crash and In-Memory Data Loss"
},
{
"cve": "CVE-2024-21661",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2024-03-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270173"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Argo CD that may result in a remote denial of service. The expireOldFailedAttempts function modifies an array while it is being iterated over. This issue may cause an application crash when executed in a multi-threaded environment if two threads interact with the same array simultaneously.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argo-cd: Denial of Service Due to Unsafe Array Modification in Multi-threaded Environment",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21661"
},
{
"category": "external",
"summary": "RHBZ#2270173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270173"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21661"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21661",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21661"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-6v85-wr92-q4p7",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-6v85-wr92-q4p7"
}
],
"release_date": "2024-03-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-10T12:41:59+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:1753"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "argo-cd: Denial of Service Due to Unsafe Array Modification in Multi-threaded Environment"
},
{
"cve": "CVE-2024-21662",
"cwe": {
"id": "CWE-307",
"name": "Improper Restriction of Excessive Authentication Attempts"
},
"discovery_date": "2024-03-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270182"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Argo CD, where the rate limit for login attempts may be bypassed due to an incomplete fix for CVE-2020-8827. The cache-based mechanism is limited to a `defaultMaxCacheSize` of 1000 entries. An attacker can overflow this cache by sending excessive login attempts for different users, thereby pushing out the admin account\u0027s failed attempts and effectively resetting the rate limit for that account. This enables attackers to perform brute force attacks at an accelerated rate, especially targeting the default admin account.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argo-cd: Bypassing Rate Limit and Brute Force Protection Using Cache Overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21662"
},
{
"category": "external",
"summary": "RHBZ#2270182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270182"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21662"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21662",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21662"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/17b0df1168a4c535f6f37e95f25ed7cd81e1fa4d",
"url": "https://github.com/argoproj/argo-cd/commit/17b0df1168a4c535f6f37e95f25ed7cd81e1fa4d"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/6e181d72b31522f886a2afa029d5b26d7912ec7b",
"url": "https://github.com/argoproj/argo-cd/commit/6e181d72b31522f886a2afa029d5b26d7912ec7b"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/cebb6538f7944c87ca2fecb5d17f8baacc431456",
"url": "https://github.com/argoproj/argo-cd/commit/cebb6538f7944c87ca2fecb5d17f8baacc431456"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-2vgg-9h6w-m454",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-2vgg-9h6w-m454"
}
],
"release_date": "2024-03-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-10T12:41:59+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:1753"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "argo-cd: Bypassing Rate Limit and Brute Force Protection Using Cache Overflow"
},
{
"cve": "CVE-2024-29893",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2272211"
}
],
"notes": [
{
"category": "description",
"text": "The ArgoCD repo-server component is vulnerable to a denial of service attack, where it is possible to crash the repo server component through an out-of-memory error by pointing it to a malicious Helm registry. The loadRepoIndex() function in the ArgoCD\u0027s helm package does not limit the size or time while fetching the data. It fetches and creates a byte slice from the retrieved data in one go. If the registry is implemented to push data continuously, the repo server will keep allocating memory until it runs out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argo-cd: uncontrolled memory allocation vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29893"
},
{
"category": "external",
"summary": "RHBZ#2272211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272211"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29893"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29893",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29893"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/14f681e3ee7c38731943b98f92277e88a3db109d",
"url": "https://github.com/argoproj/argo-cd/commit/14f681e3ee7c38731943b98f92277e88a3db109d"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/36b8a12a38f8d92d55bffc81deed44389bf6eb59",
"url": "https://github.com/argoproj/argo-cd/commit/36b8a12a38f8d92d55bffc81deed44389bf6eb59"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/commit/3e5a878f6e30d935fa149723ea2a2e93748fcddd",
"url": "https://github.com/argoproj/argo-cd/commit/3e5a878f6e30d935fa149723ea2a2e93748fcddd"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jhwx-mhww-rgc3",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jhwx-mhww-rgc3"
}
],
"release_date": "2024-03-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-10T12:41:59+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:1753"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:1996e6120039d1991c60e6c9168d97e901baad12e03ec41ff8df2bce625c5f58_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:317da841207e7aa35c328bcba773f0fc7f44e7881a9fc6cf199d035bd7c23953_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:365858cdc250f1a144c16c51b362b2f2a95f3325e89bf19da5e3100f63dd8789_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argo-rollouts-rhel8@sha256:be89b39e95bef95de6adb37200a2fabf776bf402d3379bb72dfe79fc1afe40c2_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:0eb3bac4f1b9e56046427bba40cc37e6b5e8376a93fe56b3fa1877fcb8b3d19b_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:4bbaa7645f8fdfbf72513813a69aa4128a9206063d444b9b59638fcc2e3193f1_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:538a00be647226ff940e164e582614bfab1baf4eaab05e660d823c93962d1ab3_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/argocd-rhel8@sha256:7c77e180f4cad6abb7b2a780fbdecc8e82421d60dcfd84a749f58a018631442c_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:02df64cedfc32151b4d87a3e5bb8da572c74282039dad0c9099fb453149d3cc9_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:40fd1203c93f5d0ac9bd9c11407eae1925b0776240dfe0216a9b7c90c9feb742_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:450dfe0508806d52b93e416257c8a20933fb6c0410e6b06fd894e490c94deca3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/console-plugin-rhel8@sha256:a8e77cf16115a70efdd28ad422e09d505f0fc46e3fdae502ccaff273914754ea_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:a66a27e3e7c0707568bb5dafde4be5b987b60e67b21f8085bba4d62c0bcd9bf5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:c25ffaf0d086b4016bbde60873f15d01fa41f263b753747ab43ed06754cc9c79_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:dab5416df5a257ac6125461fde174cb2e33cc94367ca59cce401ebc429d052fb_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/dex-rhel8@sha256:fc92f6110cb92f022c6173dbee003d9504b010dbcf908c782c18db0eda866b40_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-operator-bundle@sha256:c5df7064de09d09b86003872ca032b6def36feaad63a303cc575a8feea704bf7_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:52401877747749c1be6f67e4c2d405b4f40a04b1511603b88ad70c1b38a399f4_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:9d43cec5e46f4f7927580781acc163f1a8112b6c5d4e048198275ab63a501f32_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:a109ba58dd26f12c88472cab9b9a07b5a0e0ce0821f46841d24b4324ada14610_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8-operator@sha256:b2ea9040aedb1b3515b130111780cfe1f107486002e72d8a4a4966b3c7908f64_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:4ca7fed5219b710b8458a0af33e1c9b3206e7c943e4eeec238a7ea3ab5141fc3_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8be733a39f4e86bc505af074d4abb02c8bca665d4a0fc24af078acfcf75d6046_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:8cc320e203dc21e39a0099d216282f509b1aeedc4da069e8c2d469c856eb03f1_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/gitops-rhel8@sha256:be214deda93eb2f6ba68bdc980274eeb31588fa270803981e681ae5d281bdbce_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:2af8c694c8f7446a07394b602771d6d4a2ba035ac85f3982226cbbef98dee304_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:45d3059e06cb6405b046302ba15f7a40b6bd0d006603533fd3546649c9e8ccae_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:7282760e74eeb8245fb729d968618305ef9643d88a42e22c43304936d13b7ac5_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/kam-delivery-rhel8@sha256:887265df7563fd6974410dd47d268a70c64d0e683b3c6f38478b2ad63e1b1f5c_s390x",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:0b75b8988ec088a503144c2f12ff907951555e23d9c747c3511512d533952a71_ppc64le",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:2d800d72ff7d42d42c342f8b1ae15f4ac56abeb4c10c1d7a4610fe94bea48a5f_arm64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:921b6193b7b99b45e3eac203661a18ba65675390cefad3f131913fbf4f2a3fee_amd64",
"8Base-GitOps-1.12:openshift-gitops-1/must-gather-rhel8@sha256:e71351eb90343778bc4b5ff770ffe71af165e73c19889d63ebb190d75e6eaccb_s390x",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:3b7205423e557ce1253ea44164443b4831a6fdcdb14256c63a450b0d617308d9_arm64",
"9Base-GitOps-1.12:openshift-gitops-1/argocd-rhel9@sha256:9e77cbf2cca74e09b4be037cb95673e510e8a821d2e27de04777bd6d8b4abb62_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "argo-cd: uncontrolled memory allocation vulnerability"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…