RHSA-2024:4891
Vulnerability from csaf_redhat - Published: 2024-07-26 20:58 - Updated: 2026-03-18 16:23Summary
Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.13.1 security update
Severity
Important
Notes
Topic: An update is now available for Red Hat OpenShift GitOps v1.13.1. Red Hat
Product Security has rated this update as having a security impact of Important.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Errata Advisory for Red Hat OpenShift GitOps v1.13.1.
Security Fix(es):
* openshift-gitops-argocd-container: Unauthenticated Denial of Service Vulnerability via /api/webhook Endpoint in Argo CD [gitops-1.13](CVE-2024-40634)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* In argoCD Version 2.11.3 webhook api endpoint is not working for Bitbucket and Azure DevOps
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A vulnerability was found in Argo CD. This flaw allows an unauthenticated attacker to send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation leading to service disruption by triggering an out-of-memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2024:4891
References
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenShift GitOps v1.13.1. Red Hat\nProduct Security has rated this update as having a security impact of Important.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Errata Advisory for Red Hat OpenShift GitOps v1.13.1.\n\nSecurity Fix(es):\n\n* openshift-gitops-argocd-container: Unauthenticated Denial of Service Vulnerability via /api/webhook Endpoint in Argo CD [gitops-1.13](CVE-2024-40634)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* In argoCD Version 2.11.3 webhook api endpoint is not working for Bitbucket and Azure DevOps",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4891",
"url": "https://access.redhat.com/errata/RHSA-2024:4891"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "GITOPS-5045",
"url": "https://issues.redhat.com/browse/GITOPS-5045"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4891.json"
}
],
"title": "Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.13.1 security update",
"tracking": {
"current_release_date": "2026-03-18T16:23:49+00:00",
"generator": {
"date": "2026-03-18T16:23:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.3"
}
},
"id": "RHSA-2024:4891",
"initial_release_date": "2024-07-26T20:58:31+00:00",
"revision_history": [
{
"date": "2024-07-26T20:58:31+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-26T20:58:31+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-18T16:23:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.13",
"product": {
"name": "Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.13",
"product": {
"name": "Red Hat OpenShift GitOps 1.13",
"product_id": "9Base-GitOps-1.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.13::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.13.1-6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.13.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"product": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"product_id": "openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.13.1-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.13.1-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.13.1-6"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.13.1-6"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.13.1-6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64"
},
"product_reference": "openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"relates_to_product_reference": "8Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"relates_to_product_reference": "9Base-GitOps-1.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64 as a component of Red Hat OpenShift GitOps 1.13",
"product_id": "9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64",
"relates_to_product_reference": "9Base-GitOps-1.13"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-40634",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-23T14:26:36+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2299473"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Argo CD. This flaw allows an unauthenticated attacker to send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation leading to service disruption by triggering an out-of-memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argocd: Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in Argo CD",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-40634"
},
{
"category": "external",
"summary": "RHBZ#2299473",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299473"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-40634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40634"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w",
"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w"
}
],
"release_date": "2024-07-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-26T20:58:31+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4891"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:1597d12f5d487572ecd9afe88e512e1f620599a6a47312cdb0e5ea6fcc4c9b36_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:19f678df553293e30b56f28ed32e90f72648649a5d5b89c4be59dcf912c6e9fa_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:204979b5d35350c0f055d9203a6ba2260b3240a5ecee5f9bb43f5468076a69f3_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/argo-rollouts-rhel8@sha256:7a90a484902bfc7148217914cd65f0a1d7e79218a238abc479a6d9ccef96f4cf_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:343c542d45bf52fda4742183d60422d36c15615105f990a180fee0b15dcd82d0_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:65bcc82d88275ce84eb21c2a88a6f4d32bbb8c5e28d34e7de4ee19cc3dddedac_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8738e84b087318aa8b9a3d2fa851e018897af0b646de58cde3be0861c3a2b3fd_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/argocd-rhel8@sha256:8814381fb164cc04ff0764a45c4ab36bbf95c64950c6667e78ba3b7dbef85a57_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:01159dc5aad803a0812003320a9cca4b23a34e8b1d037dbe5437b064a41a5a33_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:5e2c4a47afa8f147b140abac309cdb1f6c92186170a0180f76acff3526557fde_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:a8399eae8d0e6810a1a340bb80df08ae49ff1c0eff4eea39c8c929ef5a5d6e37_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/console-plugin-rhel8@sha256:f241386d6775eda56cc4965fc798b3c955c8ad37fbab5c0b9d2a047322df3c8c_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:63625a8587f9836d55817fbefce372cf294ce5ed3c7d0c4ca1738762aef0b892_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:7b5b7193324c2bf732cb5680b08344d80c6fc36f0994c7f672e8a494e02c5af6_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:94a08e73f086c275689d3b0da814f7cda6f011a991db0aa1312d3f025d866924_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/dex-rhel8@sha256:983356f0dbd9205281f335f3eb3fe2b6d9a82559d0329f622e3d309974fd7ef2_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-operator-bundle@sha256:b19fb714784fa74033214d26a368ec13b26452772c0c0384c569c266392234bd_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:25424a9311ba9557e8d07bb199a3bf4a341c5d86be36417728687b417c52cfbf_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:26796accb8e20fc14ea607742a828818cfad7d32a390f71c6cd9ea8e20079f85_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:738ad84244e4845d985d3f211f3bdc887b89ca562d54909042813c2291345ce2_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8-operator@sha256:f010f82179b4081c06c367227211252b1cdcf664b90da44a0cba15e0000f110a_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:4b1708affdaeb5e9916da886b1fe9819e2ff05950e462ce34222a426e66a581e_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:ba0877e9ea66210a3a47d33369919e425b3e39879832d0425971af56b04da716_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:bda876b4b557ab3e1a0a9d422d784eeb8bd830cb988932eb9b0f6388631ad738_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/gitops-rhel8@sha256:e36a69825f19867f5f455816f9aca377ae0572f32729ab035b66adce8bcef70c_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:0c8ce44b0860558edb8e8cc27e9c54b92b34b6b3517f4f357455085eb3d9d30d_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:731ef52b2be3f011a77d153740e3eac09f84e5098f7fbf78584c399d498a9f8d_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:ca6139f39423508388f5f8493430113e343e41b4215560b48d7ccb088ab05f1a_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/kam-delivery-rhel8@sha256:fe61e21f90bdfa11451947a3f4ab59adc0e9056414ffdfdfedf7ad79a94c617a_s390x",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:5444ffeeeac5446b3212b06d99256e736048e876125fc65753ce6de9017c25fd_ppc64le",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:a20821b1e70daa6d6c89d477584ef65ec421eb0e76a9fca6d00e74d2bed620ef_amd64",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:bfb27b8b743b72b93a8e92db93a11a589ee17cdef2d94bdfeeda4c79a20862c4_arm64",
"8Base-GitOps-1.13:openshift-gitops-1/must-gather-rhel8@sha256:ed9f5f7d1db149ff01c4d545728008ee9c0eee77b1f5feede99b68ba8b56c0fa_s390x",
"9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:3cfd0ec979b85445f44648d03118591e3c87f6502a33e27812955151151a9654_amd64",
"9Base-GitOps-1.13:openshift-gitops-1/argocd-rhel9@sha256:47bf94148d5c374326ebf24e0a5e5a2eefd57f8cd55611e1b9bca787d5690992_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "argocd: Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in Argo CD"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…