rhsa-2024_9583
Vulnerability from csaf_redhat
Published
2024-11-13 18:00
Modified
2024-11-15 20:28
Summary
Red Hat Security Advisory: ACS 4.4 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security
(RHACS). The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.4.6 introduces the following changes:
Bug fix:
* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS). The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.4.6 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9583",
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html",
"url": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "ROX-24326",
"url": "https://issues.redhat.com/browse/ROX-24326"
},
{
"category": "external",
"summary": "ROX-26880",
"url": "https://issues.redhat.com/browse/ROX-26880"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9583.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.4 enhancement update",
"tracking": {
"current_release_date": "2024-11-15T20:28:47+00:00",
"generator": {
"date": "2024-11-15T20:28:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:9583",
"initial_release_date": "2024-11-13T18:00:45+00:00",
"revision_history": [
{
"date": "2024-11-13T18:00:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-13T18:00:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T20:28:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.4 for RHEL 8",
"product": {
"name": "RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.