RHSA-2024:9629
Vulnerability from csaf_redhat - Published: 2024-11-14 08:36 - Updated: 2026-03-19 20:51Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.6
Severity
Important
Notes
Topic: Red Hat OpenShift Service Mesh Containers for 2.5.6
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* kiali-ossmc-container: nesting-based mutation XSS vulnerability (CVE-2024-47875) (OSSM-8247)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in DOMPurify that could allow for a nesting-based mXSS to not be properly sanitized.
8.0 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2024:9629
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
References
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.5.6\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n\n* kiali-ossmc-container: nesting-based mutation XSS vulnerability (CVE-2024-47875) (OSSM-8247)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9629",
"url": "https://access.redhat.com/errata/RHSA-2024:9629"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2318052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318052"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9629.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.6",
"tracking": {
"current_release_date": "2026-03-19T20:51:56+00:00",
"generator": {
"date": "2026-03-19T20:51:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.3"
}
},
"id": "RHSA-2024:9629",
"initial_release_date": "2024-11-14T08:36:54+00:00",
"revision_history": [
{
"date": "2024-11-14T08:36:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-14T08:36:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-19T20:51:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.5 for RHEL 8",
"product": {
"name": "RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.15-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.16-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.6-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.6-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.15-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.16-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.6-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.6-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.15-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.16-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.6-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.6-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.15-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.16-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.6-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.6-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.6-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-47875",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-10-11T15:20:07.304345+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2318052"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in DOMPurify that could allow for a nesting-based mXSS to not be properly sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: nesting-based mutation XSS vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47875"
},
{
"category": "external",
"summary": "RHBZ#2318052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318052"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47875"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47875",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47875"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/blob/0ef5e537a514f904b6aa1d7ad9e749e365d7185f/test/test-suite.js#L2098",
"url": "https://github.com/cure53/DOMPurify/blob/0ef5e537a514f904b6aa1d7ad9e749e365d7185f/test/test-suite.js#L2098"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/0ef5e537a514f904b6aa1d7ad9e749e365d7185f",
"url": "https://github.com/cure53/DOMPurify/commit/0ef5e537a514f904b6aa1d7ad9e749e365d7185f"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/6ea80cd8b47640c20f2f230c7920b1f4ce4fdf7a",
"url": "https://github.com/cure53/DOMPurify/commit/6ea80cd8b47640c20f2f230c7920b1f4ce4fdf7a"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-gx9m-whjm-85jf",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-gx9m-whjm-85jf"
}
],
"release_date": "2024-10-11T15:15:05.860000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-14T08:36:54+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9629"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:20c5729df345672654e0451e0cbcfbe863805fb5bb28b18cfaf3535c58e30089_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:4005e591746c5febf32c236731bb0c26f70d019327bbdef42ca7cc963834b9ef_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:a540e7caea480f08a45b568d77143632f9037748d41f2e404acadb3e1c69993a_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fddfbc8eb02901993de6b1e2e3ff300f2ed655e880913198db9625dd2bb2d901_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2349b52f0eb89c430acac4652e16f6f87ccfdf729a2842c78e1d341289967cbd_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:5b10adf74b4e38e9e7768d0e4178b6069e287a514118d2c01a547a82bf63bfc0_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:bcfe1c7fedf3ad05becc6feb4cc039e79ac8d96ba544e7d83a258208dea2a1c0_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:d1aaffdf2037c27e617ecbc5b7d332f064d0835798eddf00a61e09506cc163f4_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:4dbc9af138b09394f5b0e980f5844dd852dfa269f56061adbd6c071badbb3e7f_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:65468fe040df7e988286c888a9cb584a38fd52e0315e3d3baf880b0ff466e861_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:bd74dd0c04d4d5787e2c3aafbca3d5712c2b100d1a320d544f924138c59740a0_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:e6fae53dd0b5126479293736486d73a7831150eb3ccef1e59fbd276340024c55_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:119f5eadf591993b1fb4989f15b46e356f60a019256598e84523bd2bc08b6e3a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2abdbf22f8f99eb18dd3cb3393fd70e364a9e6a8348bb4028a2146a05b330a3a_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:afda09c612d9eef60439a2ce29d5c0262abd63e33fc32aacf62e8aeaa88d42c4_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ba29942848135ede7214bd53ada5f4f27c2245c3832b26916f55f623ef5e0281_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:44ecbaac3a9f293c395a8bcf61bc09491934d425d0bc999afaca8f0a7f0225e7_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9ace9ceea8337bbfab384d1f2080974eef24b3b88a58f104f2f4ab001cb8f16c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:a60f2267cd8adc02d3d726f009832f1348683b5d286eb895711f8cb6ab40d242_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:b9bc720b798b29639cc6563d64219ee19ff0b5f0ede40fe85df42db3333d2f8a_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:23caccd0e422ac4b59397aa6d7a028f4df8a61488b7ea339d81cb8ac432c3716_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:9b975fe879ed990ff410a2cc72a6f1d7e49d63a86d5b4e90bf48eb6f6172d32d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:fa1eb737072defb020f05061805a5c962b869bc34db82971a387958f1fb125af_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:ffe5602bd1e2c9c2ad354f262cb130a89c11a0b48390155b7a7a670b16dbd9c3_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:2233881311d88bd98a40a95af3131daa18fc5ac60290bf1c70f3b99488489118_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:8581ad76cd8e4d17f36094bb65afffac23d47ecb5ade9590022466d44518bb59_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:9d111abdce8928192a104a0fa4818f060aca5012c8c5107ff0fc489a594a16be_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:fcc3521fbb4be11baef5008353301dcec580045f003b12b7af3beb0107807fba_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:403318fb7177877f1a7075a76803b56d159cb6866a71c486c3d60de0eac73ea6_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:4ca99e4ff0e5af748b818c93716e7172926d2552f80694aa0f1a9e0384f355d2_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:bb8ff50a406cf719abb7d954a3ffcb7d3d7c73d21a5ed8bec9b994fcf93779cc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:d7ba12eafd54c65fdd14a448d5fb5081a40c264911b39de3efc7b66ef0226ab3_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: nesting-based mutation XSS vulnerability"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…