RHSA-2026:3108
Vulnerability from csaf_redhat - Published: 2026-02-23 17:24 - Updated: 2026-02-25 07:06Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.5
Notes
Topic
Red Hat OpenShift Service Mesh 3.1.5
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Service Mesh 3.1.5, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.
Fixes/Improvements:
* Updated to Istio version 1.26.8
* OCSP Memory Leak Check BSSL-Compatability
Security Fix(es):
* istio-rhel9-operator: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)
* istio-pilot-rhel9: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)
* istio-cni-rhel9: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)
* istio-cni-rhel9: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh 3.1.5\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh 3.1.5, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.\n \nFixes/Improvements:\n\n* Updated to Istio version 1.26.8\n\n* OCSP Memory Leak Check BSSL-Compatability\n\nSecurity Fix(es):\n\n* istio-rhel9-operator: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)\n\n* istio-pilot-rhel9: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)\n\n* istio-cni-rhel9: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)\n\n* istio-cni-rhel9: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:3108",
"url": "https://access.redhat.com/errata/RHSA-2026:3108"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3108.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.5",
"tracking": {
"current_release_date": "2026-02-25T07:06:33+00:00",
"generator": {
"date": "2026-02-25T07:06:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.1"
}
},
"id": "RHSA-2026:3108",
"initial_release_date": "2026-02-23T17:24:11+00:00",
"revision_history": [
{
"date": "2026-02-23T17:24:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-02-23T17:24:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-02-25T07:06:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3.1",
"product": {
"name": "Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-sail-operator-bundle@sha256%3Ac3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771409032"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390419"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390153"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3Aeadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771391055"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390586"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3Aa873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771400109"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3A32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1771391247"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390419"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390153"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771391055"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390586"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771400109"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3A13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1771391247"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390419"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3Ad18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390153"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771391055"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390586"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771400109"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3Ab20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1771391247"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390419"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390153"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3Ad6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771391055"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771390586"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3Aaf46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1771400109"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3Acaab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1771391247"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-23T17:24:11+00:00",
"details": "See Red Hat OpenShift Service Mesh 3.1.5 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.1",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3108"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-23T17:24:11+00:00",
"details": "See Red Hat OpenShift Service Mesh 3.1.5 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.1",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3108"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:13c44791195db8621bb6bf7c2ee9d0c021100913ee084513ef9876683dd09db1_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:32b0f17f22669860f4e0eb5b8dfaa78ffc67dd3559f45c9e93671d9f1855d35f_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:b20dd28ed5975d5fb6c6d01729168dd939d222098597e09c29f7430d179b46c4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:caab6cf1b57357bbcc58ae5b4c7bb0ea92c3e9fe142c543f6c2da1c8a2a7aaee_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:4ada91098d4f47784016abf7015e20e068b76ece37a2d2c054b3986d708ed30c_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:6ced0b7d95cc8bec20d00adb2f7587202bacedd2d5b55b9e297a5bcc207089af_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:8792cda826c9afc0ab5d67fe4c1abbacbc16005c3a407ade0f3bdbbf4d0e8649_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:88337ff2221d2a2695e6c5af167d5fda9aa5d7225daabea6a9a8b55e34a74f6e_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2983464abf90f1ab085919cb0c2739fcd0cc4ffa8aadc1816005df91c8e2911f_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:67e2792b5e898ff5fc26e3912b0e24f72e43842dfb0bda9fe070560d069ba8ce_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:892341ffbcdce3ff2f9723a3405af64c8c9879ab55857fd7561edb4b6782eb65_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:d18dcd6a17e9b00b76f492e6062fd6067f4fa05f0493050224a1094e5552a0e4_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:16cc994dd9eda1408da99798435236c88a177155d176904562fddd0d4fe1abc1_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:405e86c83431f73186638cb43815ba0466f5e50689d2ee1d84327168412838a9_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:5a5e1f0807103b16c6b049319a7c176b1ebfb25f1287563bfda3bf1cd3182c1e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:824ebba7a8e0b16337f72961263e46d073e1cbbfd436d637b7fa2a74ea28e029_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:7297923206f14165cd59aba37f007f824e4c6e18bbd8b6bd6522d7e007e5300f_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:846f1e23adabd88b30ced214c704280aa95f4a4d562768eb18599e3aaf6734f7_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a873ca532169aaa3090340ae0b3deeea04d3b17407ec95ecb0979bdcd36ad205_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:af46660dd2c97f3bbfeca8ba9f344f74ef93c58a956426998c3f23ffe74076d2_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:013a6bda07e2be5a3ea5de72b94cd7cf0545c484a8ef2d4179d27dad323eb713_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:334fee8bd9a2631fcd66d3a3a14cb9fd06e8c4d71d2892886fd261f81361119e_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:d6c4e8eb2725f89243cfecfdd1950401d2e73b3915ee6471dc9e880ab806f738_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:eadb7ac7d1bd9b873330de0a517a84a531913dddc306c8eb60645c18c6862250_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:c3cf1d5a1e6e5174e08cee465b1bee05ed731850e95ff95c06640dc00a1d2f3f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…