RHSA-2026:27998
Vulnerability from csaf_redhat - Published: 2026-06-22 15:31 - Updated: 2026-06-25 23:18Summary
Red Hat Security Advisory: Cost Management Metrics Operator Update
Severity
Important
Notes
Topic: Cost Management Metrics Operator version 4.4.1 release.
Details: The Cost Management Metrics Operator is a component of the Red Hat Cost Managment service for Openshift.
The operator runs on the latest supported versions of Openshift.
This operator obtains OpenShift usage data by querying Prometheus every hour to create metric reports
that it uploads to Cost Management at console.redhat.com.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potentially resulting in a NULL dereference or undefined behavior. This issue may cause an application level denial of service or other unpredictable system states.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in glibc, the GNU C Library. A remote attacker could exploit this vulnerability by providing specially crafted inputs using the IBM1390 or IBM1399 character sets to the `iconv()` function. This could lead to an assertion failure, causing the application to crash and resulting in a Denial of Service (DoS).
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in glibc (the GNU C Library). When an application uses the `gethostbyaddr` or `gethostbyaddr_r` functions with a `nsswitch.conf` configuration that specifies glibc's DNS backend, a remote attacker can send a specially crafted DNS (Domain Name System) response. This crafted response can cause the application to incorrectly interpret a non-answer section of the DNS response as a valid answer, leading to potential misbehavior or incorrect information processing.
6.5 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the GNU C library (glibc). When applications use the `gethostbyaddr` or `gethostbyaddr_r` functions with a `nsswitch.conf` configuration that specifies glibc's DNS backend, the library may return an invalid DNS hostname. This violates the DNS specification and could lead to applications receiving incorrect hostname information, potentially impacting network operations or security decisions.
4.0 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Low
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation.
6.7 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax (CMS) EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter field without first verifying its presence. This leads to a NULL pointer dereference, which can cause applications processing the attacker-controlled CMS data to crash, resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in openssl. Applications that use RSASVE key encapsulation, a method for securely exchanging encryption keys, may inadvertently expose sensitive data. This vulnerability arises when an application processes a malicious, invalid RSA public key provided by an attacker without proper validation. Consequently, the application might send the contents of an uninitialized memory buffer, which could contain confidential information, to the attacker.
5.9 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
References
53 references
Acknowledgments
Red Hat
Zoltan Fridrich
Ali Raza
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Cost Management Metrics Operator version 4.4.1 release.",
"title": "Topic"
},
{
"category": "general",
"text": "The Cost Management Metrics Operator is a component of the Red Hat Cost Managment service for Openshift.\nThe operator runs on the latest supported versions of Openshift.\nThis operator obtains OpenShift usage data by querying Prometheus every hour to create metric reports\nthat it uploads to Cost Management at console.redhat.com.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:27998",
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-2100",
"url": "https://access.redhat.com/security/cve/CVE-2026-2100"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-28390",
"url": "https://access.redhat.com/security/cve/CVE-2026-28390"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31790",
"url": "https://access.redhat.com/security/cve/CVE-2026-31790"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4046",
"url": "https://access.redhat.com/security/cve/CVE-2026-4046"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4437",
"url": "https://access.redhat.com/security/cve/CVE-2026-4437"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4438",
"url": "https://access.redhat.com/security/cve/CVE-2026-4438"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4878",
"url": "https://access.redhat.com/security/cve/CVE-2026-4878"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/cost_management_service/1-latest/html/getting_started_with_cost_management/steps-to-cost-management",
"url": "https://docs.redhat.com/en/documentation/cost_management_service/1-latest/html/getting_started_with_cost_management/steps-to-cost-management"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27998.json"
}
],
"title": "Red Hat Security Advisory: Cost Management Metrics Operator Update",
"tracking": {
"current_release_date": "2026-06-25T23:18:09+00:00",
"generator": {
"date": "2026-06-25T23:18:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.2.5"
}
},
"id": "RHSA-2026:27998",
"initial_release_date": "2026-06-22T15:31:52+00:00",
"revision_history": [
{
"date": "2026-06-22T15:31:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-22T15:31:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-25T23:18:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Cost Management 4",
"product": {
"name": "Cost Management 4",
"product_id": "Cost Management 4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cost_management:4::el9"
}
}
}
],
"category": "product_family",
"name": "Cost Management"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"product": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"product_id": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"product_identification_helper": {
"purl": "pkg:oci/costmanagement-metrics-rhel9-operator@sha256%3A92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23?arch=amd64\u0026repository_url=registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator\u0026tag=1780946239"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"product": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"product_id": "registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/costmanagement-metrics-operator-bundle@sha256%3Ac2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4?arch=amd64\u0026repository_url=registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle\u0026tag=1780989656"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"product": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"product_id": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/costmanagement-metrics-rhel9-operator@sha256%3A62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc?arch=arm64\u0026repository_url=registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator\u0026tag=1780946239"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le",
"product": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le",
"product_id": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/costmanagement-metrics-rhel9-operator@sha256%3Ae694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335?arch=ppc64le\u0026repository_url=registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator\u0026tag=1780946239"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"product": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"product_id": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"product_identification_helper": {
"purl": "pkg:oci/costmanagement-metrics-rhel9-operator@sha256%3A40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275?arch=s390x\u0026repository_url=registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator\u0026tag=1780946239"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64 as a component of Cost Management 4",
"product_id": "Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
},
"product_reference": "registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"relates_to_product_reference": "Cost Management 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x as a component of Cost Management 4",
"product_id": "Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x"
},
"product_reference": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"relates_to_product_reference": "Cost Management 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64 as a component of Cost Management 4",
"product_id": "Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64"
},
"product_reference": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"relates_to_product_reference": "Cost Management 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64 as a component of Cost Management 4",
"product_id": "Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64"
},
"product_reference": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"relates_to_product_reference": "Cost Management 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le as a component of Cost Management 4",
"product_id": "Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
},
"product_reference": "registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le",
"relates_to_product_reference": "Cost Management 4"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Zoltan Fridrich"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2026-2100",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"discovery_date": "2026-02-06T12:02:49.002000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437308"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potentially resulting in a NULL dereference or undefined behavior. This issue may cause an application level denial of service or other unpredictable system states.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "p11-kit: NULL dereference via C_DeriveKey with specific NULL parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This MODERATE impact flaw in p11-kit allows a remote attacker to cause an application level denial of service or unpredictable system states. Exploitation occurs when the C_DeriveKey function is called on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This affects Red Hat Enterprise Linux 9.8 and 10.2, Fedora 42 and 43, and Red Hat In-Vehicle OS 2.0. Other Red Hat products, including OpenShift Container Platform and various RHEL versions, are not affected as the vulnerable code is not present.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-2100"
},
{
"category": "external",
"summary": "RHBZ#2437308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437308"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-2100",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2100"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-2100",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2100"
},
{
"category": "external",
"summary": "https://github.com/p11-glue/p11-kit/pull/740",
"url": "https://github.com/p11-glue/p11-kit/pull/740"
}
],
"release_date": "2026-02-06T08:08:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "p11-kit: NULL dereference via C_DeriveKey with specific NULL parameters"
},
{
"cve": "CVE-2026-4046",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2026-03-30T18:01:19.326391+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453117"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in glibc, the GNU C Library. A remote attacker could exploit this vulnerability by providing specially crafted inputs using the IBM1390 or IBM1399 character sets to the `iconv()` function. This could lead to an assertion failure, causing the application to crash and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: glibc: Denial of Service via iconv() function with specific character sets",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The availability impact posed by this flaw is limited on Red Hat systems. The affected iconv() function has been separated out into a an independent package (`glibc-gconv-extra`) and is not used in system critical software. Some applications do rely on this package and may be affected, but they are either interactive applications or are configured to restart in the event of a crash.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4046"
},
{
"category": "external",
"summary": "RHBZ#2453117",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453117"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4046",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4046"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4046",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4046"
},
{
"category": "external",
"summary": "https://packages.fedoraproject.org/pkgs/glibc/glibc-gconv-extra/",
"url": "https://packages.fedoraproject.org/pkgs/glibc/glibc-gconv-extra/"
},
{
"category": "external",
"summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=33980",
"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33980"
},
{
"category": "external",
"summary": "https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD",
"url": "https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD"
}
],
"release_date": "2026-03-30T17:16:11.021000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glibc: glibc: Denial of Service via iconv() function with specific character sets"
},
{
"cve": "CVE-2026-4437",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-20T21:01:45.993907+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in glibc (the GNU C Library). When an application uses the `gethostbyaddr` or `gethostbyaddr_r` functions with a `nsswitch.conf` configuration that specifies glibc\u0027s DNS backend, a remote attacker can send a specially crafted DNS (Domain Name System) response. This crafted response can cause the application to incorrectly interpret a non-answer section of the DNS response as a valid answer, leading to potential misbehavior or incorrect information processing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This MODERATE impact flaw in glibc allows a remote attacker to send a specially crafted DNS response when an application uses `gethostbyaddr` or `gethostbyaddr_r` with glibc\u0027s DNS backend configured in `nsswitch.conf`. This can lead to incorrect interpretation of DNS responses. Red Hat Enterprise Linux versions 6, 7, 8, 9, and 10, as well as OpenShift Container Platform, are affected if applications are configured to use the vulnerable DNS backend.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4437"
},
{
"category": "external",
"summary": "RHBZ#2449777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4437",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4437"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4437",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4437"
},
{
"category": "external",
"summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=34014",
"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=34014"
}
],
"release_date": "2026-03-20T19:59:00.427000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response"
},
{
"cve": "CVE-2026-4438",
"cwe": {
"id": "CWE-838",
"name": "Inappropriate Encoding for Output Context"
},
"discovery_date": "2026-03-20T21:02:16.458842+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449783"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the GNU C library (glibc). When applications use the `gethostbyaddr` or `gethostbyaddr_r` functions with a `nsswitch.conf` configuration that specifies glibc\u0027s DNS backend, the library may return an invalid DNS hostname. This violates the DNS specification and could lead to applications receiving incorrect hostname information, potentially impacting network operations or security decisions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a LOW impact flaw where glibc\u0027s `gethostbyaddr` and `gethostbyaddr_r` functions may return an invalid DNS hostname. This occurs when applications use a `nsswitch.conf` configuration that specifies glibc\u0027s DNS backend. This could lead to applications receiving incorrect hostname information, potentially affecting network operations or security decisions on Red Hat Enterprise Linux and OpenShift Container Platform.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4438"
},
{
"category": "external",
"summary": "RHBZ#2449783",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449783"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4438",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4438"
},
{
"category": "external",
"summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=34015",
"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=34015"
}
],
"release_date": "2026-03-20T19:59:06.064000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions"
},
{
"acknowledgments": [
{
"names": [
"Ali Raza"
]
}
],
"cve": "CVE-2026-4878",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-03-26T06:56:21.213270+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451615"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw. A Time-of-Check-to-Time-of-Use (TOCTOU) race condition in libcap\u0027s cap_set_file() allows a local unprivileged user to escalate privileges. An attacker with write access to a parent directory can exploit a narrow window during file capability updates to redirect capabilities to an attacker-controlled file. This can lead to the injection of elevated privileges into an unintended executable when privileged processes, such as setcap or container tooling, invoke cap_set_file() on attacker-influenced paths.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4878"
},
{
"category": "external",
"summary": "RHBZ#2451615",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4878",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4878"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4878",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4878"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2447554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447554"
}
],
"release_date": "2026-04-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()"
},
{
"cve": "CVE-2026-28390",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-04-07T23:01:18.313921+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456314"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax (CMS) EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter field without first verifying its presence. This leads to a NULL pointer dereference, which can cause applications processing the attacker-controlled CMS data to crash, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been rated as moderate by redhat because the vulnerability is limited to a denial-of-service condition caused by a NULL pointer dereference in OpenSSL CMS processing, without evidence of memory corruption or code execution, furthermore the Affected functionality is niche. The vulnerable path requires:\nCMS/S/MIME processing,\nspecifically CMS_decrypt(),\nwith RSA-OAEP KeyTransportRecipientInfo.\nMany OpenSSL consumers never use CMS APIs, never process S/MIME,\nor do not decrypt attacker-controlled CMS objects.\nSo exposure is far narrower than a generic TLS parsing vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-28390"
},
{
"category": "external",
"summary": "RHBZ#2456314",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456314"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-28390",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28390"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-28390",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28390"
},
{
"category": "external",
"summary": "https://github.com/openssl/openssl/commit/01194a8f1941115cd0383bfa91c736dd3993c8bc",
"url": "https://github.com/openssl/openssl/commit/01194a8f1941115cd0383bfa91c736dd3993c8bc"
},
{
"category": "external",
"summary": "https://github.com/openssl/openssl/commit/2e39b7a6993be445fddb9fbce316fa756e0397b6",
"url": "https://github.com/openssl/openssl/commit/2e39b7a6993be445fddb9fbce316fa756e0397b6"
},
{
"category": "external",
"summary": "https://github.com/openssl/openssl/commit/af2a5fecd3e71a29e7568f9c1453dec5cebbaff4",
"url": "https://github.com/openssl/openssl/commit/af2a5fecd3e71a29e7568f9c1453dec5cebbaff4"
},
{
"category": "external",
"summary": "https://github.com/openssl/openssl/commit/ea7b4ea4f9f853521ba34830cbcadc970d2e0788",
"url": "https://github.com/openssl/openssl/commit/ea7b4ea4f9f853521ba34830cbcadc970d2e0788"
},
{
"category": "external",
"summary": "https://github.com/openssl/openssl/commit/fd2f1a6cf53b9ceeca723a001aa4b825d7c7ee75",
"url": "https://github.com/openssl/openssl/commit/fd2f1a6cf53b9ceeca723a001aa4b825d7c7ee75"
},
{
"category": "external",
"summary": "https://openssl-library.org/news/secadv/20260407.txt",
"url": "https://openssl-library.org/news/secadv/20260407.txt"
}
],
"release_date": "2026-04-07T22:00:54.172000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Applications that process Cryptographic Message Syntax (CMS) EnvelopedData messages should be configured to only accept input from trusted sources. Restricting network access to services that process untrusted CMS data can also reduce exposure to this Denial of Service vulnerability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing"
},
{
"cve": "CVE-2026-31790",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"discovery_date": "2026-03-25T02:59:10.179000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451094"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. Applications that use RSASVE key encapsulation, a method for securely exchanging encryption keys, may inadvertently expose sensitive data. This vulnerability arises when an application processes a malicious, invalid RSA public key provided by an attacker without proper validation. Consequently, the application might send the contents of an uninitialized memory buffer, which could contain confidential information, to the attacker.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Moderate impact. This flaw affects applications utilizing RSASVE key encapsulation, where an attacker-supplied invalid RSA public key is used with EVP_PKEY_encapsulate() without prior validation. This can lead to the disclosure of sensitive, uninitialized memory buffer contents to a malicious peer.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"known_not_affected": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31790"
},
{
"category": "external",
"summary": "RHBZ#2451094",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451094"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31790",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31790"
},
{
"category": "external",
"summary": "https://openssl-library.org/news/secadv/20260407.txt",
"url": "https://openssl-library.org/news/secadv/20260407.txt"
}
],
"release_date": "2026-04-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-22T15:31:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.openshift.com/container-platform/latest/operators/admin/olm-upgrading-operators.html",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27998"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-operator-bundle@sha256:c2c4a771905d23d7c0aad05672e5d8491c744ccb7f7192ef31e2b93f82a1f3b4_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:40f9729022eb27cefd14f7d0e0d869b936e5862cb079009de45cf7b3626a4275_s390x",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:62c2477e0d9ceb1998eb0d1b496ee6e46b83433ff901909aa749d6dacfaf23cc_arm64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:92da8c11452f7ae0f24e70d453f03d31e7a10ac1276c5bdc63539952d2c87b23_amd64",
"Cost Management 4:registry.redhat.io/costmanagement/costmanagement-metrics-rhel9-operator@sha256:e694c9b65667f1989df1a4c7028defd9b42f099046d55807bfef3d766ba65335_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…