Search

Find a vulnerability

Search criteria

    82 vulnerabilities found for Red Hat OpenShift Container Platform 4.16 by Red Hat

    CVE-2026-1784 (GCVE-0-2026-1784)

    Vulnerability from nvd – Published: 2026-06-02 07:22 – Updated: 2026-07-01 13:29
    VLAI
    Title
    Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection
    Summary
    The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-15 - External Control of System or Configuration Setting
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:23241 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:23246 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25045 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25182 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25194 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:26543 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:28893 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-1784 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2436075 issue-trackingx_refsource_REDHAT
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1781123014 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 1781870101 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 1780962617 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 1780988280 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 1780043338 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1780990977 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.21 Unaffected: 1780444348 , < * (rpm)
        cpe:/a:redhat:openshift:4.21::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20     cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.21     cpe:/a:redhat:openshift:4.21::el9
    Create a notification for this product.
    Date Public
    2026-06-02 07:12
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-1784",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T12:20:08.030702Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T12:20:25.547Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.20::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.20",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.21::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.21",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-06-02T07:12:31.172Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "CHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-15",
                    "description": "External Control of System or Configuration Setting",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:07:06.081Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-1784"
              },
              {
                "name": "RHBZ#2436075",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436075"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-1784.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:26543"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25045"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25182"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23246"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25194"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23241"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:26543: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25045: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25182: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23246: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25194: Red Hat OpenShift Container Platform 4.20"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23241: Red Hat OpenShift Container Platform 4.21"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-02-02T21:05:20.978Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-06-02T07:12:31.172Z",
                "value": "Made public."
              }
            ],
            "title": "ose-cluster-ingress-operator: Remote Code Execution Through HAProxy Configuration Injection",
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-operator",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1781123014",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-operator",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1781870101",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780962617",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780988280",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780043338",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780990977",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.21::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.21",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780444348",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "datePublic": "2026-06-02T07:12:31.172Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-15",
                  "description": "External Control of System or Configuration Setting",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-01T13:29:27.302Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:23241",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23241"
            },
            {
              "name": "RHSA-2026:23246",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23246"
            },
            {
              "name": "RHSA-2026:25045",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25045"
            },
            {
              "name": "RHSA-2026:25182",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25182"
            },
            {
              "name": "RHSA-2026:25194",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25194"
            },
            {
              "name": "RHSA-2026:26543",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:26543"
            },
            {
              "name": "RHSA-2026:28893",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:28893"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-1784"
            },
            {
              "name": "RHBZ#2436075",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436075"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-02-02T21:05:20.978Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-06-02T07:12:31.172Z",
              "value": "Made public."
            }
          ],
          "title": "Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection",
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-15: External Control of System or Configuration Setting"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-1784",
        "datePublished": "2026-06-02T07:22:26.461Z",
        "dateReserved": "2026-02-02T21:17:24.893Z",
        "dateUpdated": "2026-07-01T13:29:27.302Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4878 (GCVE-0-2026-4878)

    Vulnerability from nvd – Published: 2026-04-09 14:49 – Updated: 2026-07-01 19:07
    VLAI
    Title
    Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()
    Summary
    A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:12423 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12441 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:13285 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14162 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14937 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19130 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19346 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19456 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19458 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:20595 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21254 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21275 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:22634 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:22957 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:23233 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:23245 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:24346 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25044 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25181 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:26542 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:27998 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:28887 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:29197 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30078 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30088 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30089 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7473 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-4878 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2447554
    https://bugzilla.redhat.com/show_bug.cgi?id=2451615 issue-trackingx_refsource_REDHAT
    http://www.openwall.com/lists/oss-security/2026/04/07/4
    http://www.openwall.com/lists/oss-security/2026/0…
    http://www.openwall.com/lists/oss-security/2026/04/08/9
    http://www.openwall.com/lists/oss-security/2026/04/09/5
    http://www.openwall.com/lists/oss-security/2026/04/09/6
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.69-7.el10_1.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.69-7.el10_2.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:2.69-7.el10_0.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.48-6.el8_10.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.48-4.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On Unaffected: 0:2.48-4.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.48-5.el8_8.1 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.48-5.el8_8.1 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.48-10.el9_7.1 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.48-10.el9_8.1 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.48-9.el9_2.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.48-9.el9_4.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:2.48-9.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202606160406-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202606231112-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202606030318-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202606051757-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202606051320-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202606031700-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Cost Management 4 Unaffected: 1780946239 , < * (rpm)
        cpe:/a:redhat:cost_management:4::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782352950 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782352919 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782353093 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782352847 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778101579 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778156756 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1782159791 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1782166952 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 2.78-1.1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1780420428 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3 Unaffected: 1778056267 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3 Unaffected: 1778056233 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3 Unaffected: 1778056245 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798159 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798164 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798165 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798222 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15     cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.2)     cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.6)     cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 9)     cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 8)     cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v.8.6)     cpe:/o:redhat:rhel_aus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)     cpe:/o:redhat:rhel_eus_long_life:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.8.8)     cpe:/o:redhat:rhel_e4s:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS TUS (v.8.8)     cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.2)     cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.4)     cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.6)     cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 9)     cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Cost Management 4     cpe:/a:redhat:cost_management:4::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2     cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3     cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2     cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images     cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5     cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3     cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5     cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Date Public
    2026-04-06 00:00
    Credits
    Red Hat would like to thank Ali Raza for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2026-04-09T15:36:22.355Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/07/4"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/07/14"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/08/9"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/09/5"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/09/6"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4878",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-09T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-10T03:56:06.647Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.15::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.15",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1",
                  "cpe:/o:redhat:enterprise_linux:10.2"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.6::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:9::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1",
                  "cpe:/o:redhat:enterprise_linux:10.2"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_tus:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:9::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:cost_management:4::el9"
                ],
                "defaultStatus": "affected",
                "product": "Cost Management 4",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.3::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:discovery:2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Discovery 2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:hummingbird:1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Hardened Images",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:insights_proxy:1.5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Insights proxy 1.5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift distributed tracing 3.9.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhui:5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Update Infrastructure 5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:6"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 6",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:7"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 7",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-04-06T00:00:00.000Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-367",
                    "description": "Time-of-check Time-of-use (TOCTOU) Race Condition",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:10:35.145Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-4878"
              },
              {
                "name": "RHBZ#2451615",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4878.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:26542"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23233"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25044"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25181"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23245"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19456"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12423"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19130"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:21254"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:20595"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19458"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12441"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19346"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:13285"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:24346"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:22957"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:27998"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25096"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30078"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30089"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30088"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30087"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14937"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:29197"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7473"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:22634"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14162"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:21275"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:26542: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23233: Red Hat OpenShift Container Platform 4.15"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25044: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25181: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23245: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19456: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux BaseOS EUS (v. 10.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12423: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19130: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:21254: Red Hat Enterprise Linux AppStream E4S (v.9.2), Red Hat Enterprise Linux BaseOS E4S (v.9.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:20595: Red Hat Enterprise Linux AppStream EUS (v.9.4), Red Hat Enterprise Linux BaseOS EUS (v.9.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19458: Red Hat Enterprise Linux AppStream EUS (v.9.6), Red Hat Enterprise Linux BaseOS EUS (v.9.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12441: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19346: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:13285: Red Hat Enterprise Linux BaseOS (v. 8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:24346: Red Hat Enterprise Linux BaseOS AUS (v.8.6), Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:22957: Red Hat Enterprise Linux BaseOS E4S (v.8.8), Red Hat Enterprise Linux BaseOS TUS (v.8.8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:27998: Cost Management 4"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25096: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30078: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30089: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30088: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30087: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14937: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:29197: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7473: Red Hat Hardened Images"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:22634: Red Hat Insights proxy 1.5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14162: Red Hat OpenShift distributed tracing 3.9.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:21275: Red Hat Update Infrastructure 5"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-03-26T06:56:21.213Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-04-06T00:00:00.000Z",
                "value": "Made public."
              }
            ],
            "title": "libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()",
            "workarounds": [
              {
                "lang": "en",
                "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
              }
            ],
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.69-7.el10_1.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.2"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.69-7.el10_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.69-7.el10_0.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-6.el8_10.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-5.el8_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-5.el8_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-9.el9_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-9.el9_4.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-9.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202606160406-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202606231112-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202606030318-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202606051757-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202606051320-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202606031700-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:cost_management:4::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "costmanagement/costmanagement-metrics-rhel9-operator",
              "product": "Cost Management 4",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780946239",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782352950",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782352919",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782353093",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782352847",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778101579",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778156756",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782159791",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782166952",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.78-1.1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780420428",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/opentelemetry-collector-rhel9",
              "product": "Red Hat OpenShift distributed tracing 3.9.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778056267",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/opentelemetry-rhel9-operator",
              "product": "Red Hat OpenShift distributed tracing 3.9.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778056233",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/opentelemetry-target-allocator-rhel9",
              "product": "Red Hat OpenShift distributed tracing 3.9.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778056245",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798159",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798164",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798165",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798222",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "compat-libcap1",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unknown",
              "packageName": "compat-libcap1",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unknown",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Ali Raza for reporting this issue."
            }
          ],
          "datePublic": "2026-04-06T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 6.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "Time-of-check Time-of-use (TOCTOU) Race Condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-01T19:07:40.191Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:12423",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12423"
            },
            {
              "name": "RHSA-2026:12441",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12441"
            },
            {
              "name": "RHSA-2026:13285",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:13285"
            },
            {
              "name": "RHSA-2026:14162",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14162"
            },
            {
              "name": "RHSA-2026:14937",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14937"
            },
            {
              "name": "RHSA-2026:19130",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19130"
            },
            {
              "name": "RHSA-2026:19346",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19346"
            },
            {
              "name": "RHSA-2026:19456",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19456"
            },
            {
              "name": "RHSA-2026:19458",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19458"
            },
            {
              "name": "RHSA-2026:20595",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:20595"
            },
            {
              "name": "RHSA-2026:21254",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21254"
            },
            {
              "name": "RHSA-2026:21275",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21275"
            },
            {
              "name": "RHSA-2026:22634",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:22634"
            },
            {
              "name": "RHSA-2026:22957",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:22957"
            },
            {
              "name": "RHSA-2026:23233",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23233"
            },
            {
              "name": "RHSA-2026:23245",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23245"
            },
            {
              "name": "RHSA-2026:24346",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:24346"
            },
            {
              "name": "RHSA-2026:25044",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25044"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:25181",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25181"
            },
            {
              "name": "RHSA-2026:26542",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:26542"
            },
            {
              "name": "RHSA-2026:27998",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:27998"
            },
            {
              "name": "RHSA-2026:28887",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:28887"
            },
            {
              "name": "RHSA-2026:29197",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:29197"
            },
            {
              "name": "RHSA-2026:30078",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30078"
            },
            {
              "name": "RHSA-2026:30087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30087"
            },
            {
              "name": "RHSA-2026:30088",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30088"
            },
            {
              "name": "RHSA-2026:30089",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30089"
            },
            {
              "name": "RHSA-2026:7473",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7473"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-4878"
            },
            {
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447554"
            },
            {
              "name": "RHBZ#2451615",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-26T06:56:21.213Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-04-06T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-4878",
        "datePublished": "2026-04-09T14:49:02.942Z",
        "dateReserved": "2026-03-26T06:32:41.308Z",
        "dateUpdated": "2026-07-01T19:07:40.191Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-5121 (GCVE-0-2026-5121)

    Vulnerability from nvd – Published: 2026-03-30 07:47 – Updated: 2026-06-10 17:34
    VLAI
    Title
    Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing
    Summary
    A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10065 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:11768 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12071 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12274 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:13812 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14937 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16008 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16009 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16030 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16174 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19725 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:20040 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21690 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8510 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8517 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8521 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8534 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8864 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8866 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8867 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8873 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8908 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8944 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9026 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9592 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9832 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-5121 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2452945 issue-trackingx_refsource_REDHAT
    https://github.com/advisories/GHSA-2vwv-vqpv-v8vc
    https://github.com/libarchive/libarchive/pull/2934
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:3.1.2-14.el7_9.2 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:3.3.3-7.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:3.3.2-8.el8_2.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:3.5.3-9.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:3.5.3-2.el9_0.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:3.5.3-5.el9_2.2 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:3.5.3-5.el9_4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:3.5.3-7.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202604281506-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202605271328-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202604240015-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202605201155-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325677 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325711 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325710 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-3.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325709 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325708 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223654 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223651 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244559 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244531 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778274666 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244546 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778156756 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 3.8.7-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1776868961 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868774 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868744 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868772 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868842 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459441 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777454300 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459504 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10     cpe:/o:redhat:enterprise_linux:10
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Date Public
    2026-03-30 07:44
    Credits
    Red Hat would like to thank Elhanan Haenel for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-5121",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T03:55:34.402717Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-190",
                    "description": "CWE-190 Integer Overflow or Wraparound",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T13:52:02.886Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.2-14.el7_9.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-7.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.2-8.el8_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-2.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202604281506-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202605271328-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202604240015-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202605201155-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-monitoring-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325677",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325711",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-controller-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325710",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-dashbuilder-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-3.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-kieserver-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325709",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-process-migration-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-smartrouter-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325708",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223654",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223651",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244559",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244531",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778274666",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778156756",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.8.7-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868961",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868744",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868772",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868842",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-kubernetes-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459441",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777454300",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459504",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Elhanan Haenel for reporting this issue."
            }
          ],
          "datePublic": "2026-03-30T07:44:15.222Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-190",
                  "description": "Integer Overflow or Wraparound",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-10T17:34:45.945Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10065",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10065"
            },
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:11768",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:11768"
            },
            {
              "name": "RHSA-2026:12071",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12071"
            },
            {
              "name": "RHSA-2026:12274",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12274"
            },
            {
              "name": "RHSA-2026:13812",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:13812"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:14937",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14937"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:16008",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16008"
            },
            {
              "name": "RHSA-2026:16009",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16009"
            },
            {
              "name": "RHSA-2026:16030",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16030"
            },
            {
              "name": "RHSA-2026:16174",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16174"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:19724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19724"
            },
            {
              "name": "RHSA-2026:19725",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19725"
            },
            {
              "name": "RHSA-2026:20040",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:20040"
            },
            {
              "name": "RHSA-2026:21690",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21690"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:8510",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8510"
            },
            {
              "name": "RHSA-2026:8517",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8517"
            },
            {
              "name": "RHSA-2026:8521",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8521"
            },
            {
              "name": "RHSA-2026:8534",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8534"
            },
            {
              "name": "RHSA-2026:8864",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8864"
            },
            {
              "name": "RHSA-2026:8866",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8866"
            },
            {
              "name": "RHSA-2026:8867",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8867"
            },
            {
              "name": "RHSA-2026:8873",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8873"
            },
            {
              "name": "RHSA-2026:8908",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8908"
            },
            {
              "name": "RHSA-2026:8944",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8944"
            },
            {
              "name": "RHSA-2026:9026",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9026"
            },
            {
              "name": "RHSA-2026:9592",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9592"
            },
            {
              "name": "RHSA-2026:9832",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9832"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-5121"
            },
            {
              "name": "RHBZ#2452945",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452945"
            },
            {
              "url": "https://github.com/advisories/GHSA-2vwv-vqpv-v8vc"
            },
            {
              "url": "https://github.com/libarchive/libarchive/pull/2934"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-30T07:40:25.358Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-30T07:44:15.222Z",
              "value": "Made public."
            }
          ],
          "title": "Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing",
          "workarounds": [
            {
              "lang": "en",
              "value": "To mitigate this issue, avoid processing untrusted ISO9660 images with applications that utilize `libarchive`. Users should only extract or read content from ISO images obtained from trusted sources."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-5121",
        "datePublished": "2026-03-30T07:47:28.562Z",
        "dateReserved": "2026-03-30T07:39:27.352Z",
        "dateUpdated": "2026-06-10T17:34:45.945Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4424 (GCVE-0-2026-4424)

    Vulnerability from nvd – Published: 2026-03-19 13:50 – Updated: 2026-06-30 12:10
    VLAI
    Title
    Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing
    Summary
    A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10065 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:11768 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12071 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12274 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:13812 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14937 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16008 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16009 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16030 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16174 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19725 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:20040 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21690 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8492 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8510 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8517 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8521 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8534 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8864 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8865 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8866 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8867 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8873 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8908 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8944 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9026 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9592 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9832 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-4424 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2449006 issue-trackingx_refsource_REDHAT
    https://github.com/libarchive/libarchive/pull/2898
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:3.7.7-8.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:3.7.7-5.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:3.1.2-14.el7_9.2 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:3.3.3-7.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:3.3.2-8.el8_2.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:3.5.3-9.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:3.5.3-2.el9_0.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:3.5.3-5.el9_2.2 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:3.5.3-5.el9_4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:3.5.3-7.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202604281506-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202605271328-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202604240015-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202605201155-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325677 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325711 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325710 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-3.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325709 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325708 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223654 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223651 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244559 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244531 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778274666 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244546 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778101579 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778156756 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 3.8.7-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1776868961 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868774 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868744 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868772 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868842 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459441 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777454300 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459504 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux Server (v. 7 ELS)     cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux Server Optional (v. 7 ELS)     cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12     cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Middleware Containers for OpenShift     cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14     cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15     cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17     cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.0)     cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.2)     cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.6)     cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 9)     cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 8)     cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v. 8.2)     cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v.8.4)     cpe:/o:redhat:rhel_aus:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)     cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v.8.6)     cpe:/o:redhat:rhel_aus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.8.6)     cpe:/o:redhat:rhel_e4s:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS TUS (v.8.6)     cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.8.8)     cpe:/o:redhat:rhel_e4s:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS TUS (v.8.8)     cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.0)     cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.2)     cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.4)     cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.6)     cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 9)     cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux CRB (v. 8)     cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat CodeReady Linux Builder EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::crb
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2     cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3     cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2     cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images     cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5     cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5     cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Date Public
    2026-03-19 00:00
    Credits
    Red Hat would like to thank Elhanan Haenel for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4424",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-19T17:07:05.672445Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-27T14:51:58.850Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_els:7"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_els:7"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.12::el8"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.12",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhosemc:1.0::el8"
                ],
                "defaultStatus": "affected",
                "product": "Middleware Containers for OpenShift",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.14::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.14",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.15::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.15",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.17::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.17",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.0::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.6::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:9::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_tus:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_tus:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.0::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:9::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:8::crb"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux CRB (v. 8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::crb"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.3::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:discovery:2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Discovery 2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:hummingbird:1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Hardened Images",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:insights_proxy:1.5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Insights proxy 1.5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhui:5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Update Infrastructure 5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:6"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 6",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-03-19T00:00:00.000Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-125",
                    "description": "Out-of-bounds Read",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:10:41.750Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-4424"
              },
              {
                "name": "RHBZ#2449006",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4424.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8517"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12274"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:13812"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:21690"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:15087"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14773"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10097"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:17596"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12071"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:20040"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8865"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8492"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8867"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8864"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8873"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8866"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8510"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8534"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8521"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9592"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8908"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9026"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25096"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19724"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19725"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16008"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16030"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16009"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16174"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14937"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8944"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9832"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:11768"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10065"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:8517: Red Hat Enterprise Linux Server (v. 7 ELS), Red Hat Enterprise Linux Server Optional (v. 7 ELS)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12274: Red Hat OpenShift Container Platform 4.12"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:13812: Middleware Containers for OpenShift"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:21690: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:15087: Red Hat OpenShift Container Platform 4.14"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14773: Red Hat OpenShift Container Platform 4.15"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10097: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:17596: Red Hat OpenShift Container Platform 4.17"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12071: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:20040: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8865: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux BaseOS EUS (v. 10.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8492: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8867: Red Hat Enterprise Linux AppStream E4S (v.9.0), Red Hat Enterprise Linux BaseOS E4S (v.9.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8864: Red Hat Enterprise Linux AppStream E4S (v.9.2), Red Hat Enterprise Linux BaseOS E4S (v.9.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8873: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4), Red Hat Enterprise Linux BaseOS EUS (v.9.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8866: Red Hat Enterprise Linux AppStream EUS (v.9.6), Red Hat Enterprise Linux BaseOS EUS (v.9.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8510: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8534: Red Hat Enterprise Linux BaseOS (v. 8), Red Hat Enterprise Linux CRB (v. 8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8521: Red Hat Enterprise Linux BaseOS AUS (v. 8.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9592: Red Hat Enterprise Linux BaseOS AUS (v.8.4), Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8908: Red Hat Enterprise Linux BaseOS AUS (v.8.6), Red Hat Enterprise Linux BaseOS E4S (v.8.6), Red Hat Enterprise Linux BaseOS TUS (v.8.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9026: Red Hat Enterprise Linux BaseOS E4S (v.8.8), Red Hat Enterprise Linux BaseOS TUS (v.8.8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25096: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19724: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19725: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16008: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16030: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16009: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16174: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14937: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8944: Red Hat Hardened Images"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9832: Red Hat Insights proxy 1.5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:11768: Red Hat Update Infrastructure 5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10065: Red Hat Update Infrastructure 5"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-03-19T12:22:21.740Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-03-19T00:00:00.000Z",
                "value": "Made public."
              }
            ],
            "title": "libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing",
            "workarounds": [
              {
                "lang": "en",
                "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
              }
            ],
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-8.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-5.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.2-14.el7_9.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-7.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.2-8.el8_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-2.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202604281506-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202605271328-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202604240015-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202605201155-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-monitoring-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325677",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325711",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-controller-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325710",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-dashbuilder-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-3.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-kieserver-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325709",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-process-migration-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-smartrouter-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325708",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223654",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223651",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244559",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244531",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778274666",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778101579",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778156756",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.8.7-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868961",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868744",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868772",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868842",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-kubernetes-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459441",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777454300",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459504",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Elhanan Haenel for reporting this issue."
            }
          ],
          "datePublic": "2026-03-19T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-10T17:34:02.459Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10065",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10065"
            },
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:11768",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:11768"
            },
            {
              "name": "RHSA-2026:12071",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12071"
            },
            {
              "name": "RHSA-2026:12274",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12274"
            },
            {
              "name": "RHSA-2026:13812",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:13812"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:14937",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14937"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:16008",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16008"
            },
            {
              "name": "RHSA-2026:16009",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16009"
            },
            {
              "name": "RHSA-2026:16030",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16030"
            },
            {
              "name": "RHSA-2026:16174",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16174"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:19724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19724"
            },
            {
              "name": "RHSA-2026:19725",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19725"
            },
            {
              "name": "RHSA-2026:20040",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:20040"
            },
            {
              "name": "RHSA-2026:21690",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21690"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:8492",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8492"
            },
            {
              "name": "RHSA-2026:8510",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8510"
            },
            {
              "name": "RHSA-2026:8517",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8517"
            },
            {
              "name": "RHSA-2026:8521",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8521"
            },
            {
              "name": "RHSA-2026:8534",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8534"
            },
            {
              "name": "RHSA-2026:8864",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8864"
            },
            {
              "name": "RHSA-2026:8865",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8865"
            },
            {
              "name": "RHSA-2026:8866",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8866"
            },
            {
              "name": "RHSA-2026:8867",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8867"
            },
            {
              "name": "RHSA-2026:8873",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8873"
            },
            {
              "name": "RHSA-2026:8908",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8908"
            },
            {
              "name": "RHSA-2026:8944",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8944"
            },
            {
              "name": "RHSA-2026:9026",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9026"
            },
            {
              "name": "RHSA-2026:9592",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9592"
            },
            {
              "name": "RHSA-2026:9832",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9832"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-4424"
            },
            {
              "name": "RHBZ#2449006",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
            },
            {
              "url": "https://github.com/libarchive/libarchive/pull/2898"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-19T12:22:21.740Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-19T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-125: Out-of-bounds Read"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-4424",
        "datePublished": "2026-03-19T13:50:27.294Z",
        "dateReserved": "2026-03-19T12:23:38.191Z",
        "dateUpdated": "2026-06-30T12:10:41.750Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4111 (GCVE-0-2026-4111)

    Vulnerability from nvd – Published: 2026-03-13 11:45 – Updated: 2026-06-30 12:09
    VLAI
    Title
    Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive
    Summary
    A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This condition results in an infinite loop that continuously consumes CPU resources. Because the archive passes checksum validation and appears structurally valid, affected applications cannot detect the issue before processing. This can allow attackers to cause persistent denial-of-service conditions in services that automatically process archives.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10065 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10081 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16008 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16009 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16174 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5063 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5080 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:6647 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7093 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7105 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7106 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7239 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7329 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7335 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8423 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8746 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8747 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8748 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8865 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8944 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9832 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-4111 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2446453 issue-trackingx_refsource_REDHAT
    https://github.com/libarchive/libarchive/pull/2877
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:3.7.7-5.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:3.7.7-5.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:3.5.3-7.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:3.5.3-2.el9_0.3 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:3.5.3-5.el9_2.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:3.5.3-4.el9_4.2 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:3.5.3-6.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202604080111-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202604140044-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202604211219-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1775740563 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244559 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244531 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244546 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1775680192 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1775680262 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1775749857 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1775668717 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1775675922 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 3.8.7-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1776868961 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868774 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868744 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868772 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868842 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8     cpe:/o:redhat:enterprise_linux:8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14     cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15     cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17     cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.0)     cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.2)     cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.6)     cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 9)     cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.0)     cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.2)     cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.4)     cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.6)     cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 9)     cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat CodeReady Linux Builder EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::crb
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2     cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3     cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2     cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images     cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5     cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5     cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Date Public
    2026-03-11 00:00
    Credits
    Red Hat would like to thank Elhanan Haenel for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4111",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-13T13:36:13.170394Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-13T13:36:18.676Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.14::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.14",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.15::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.15",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.17::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.17",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.0::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.6::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:9::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.0::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:9::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::crb"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.3::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:discovery:2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Discovery 2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:hummingbird:1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Hardened Images",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:insights_proxy:1.5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Insights proxy 1.5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhui:5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Update Infrastructure 5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:6"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 6",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:7"
                ],
                "defaultStatus": "unaffected",
                "product": "Red Hat Enterprise Linux 7",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:8"
                ],
                "defaultStatus": "unaffected",
                "product": "Red Hat Enterprise Linux 8",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-03-11T00:00:00.000Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This condition results in an infinite loop that continuously consumes CPU resources. Because the archive passes checksum validation and appears structurally valid, affected applications cannot detect the issue before processing. This can allow attackers to cause persistent denial-of-service conditions in services that automatically process archives."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-835",
                    "description": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:09:22.730Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-4111"
              },
              {
                "name": "RHBZ#2446453",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446453"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4111.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7239"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:15087"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14773"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10097"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:17596"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8423"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10081"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8865"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:5063"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7093"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:6647"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7106"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7105"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:5080"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25096"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7335"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16008"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8748"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8746"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8747"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16009"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16174"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7329"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8944"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9832"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10065"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:7239: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:15087: Red Hat OpenShift Container Platform 4.14"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14773: Red Hat OpenShift Container Platform 4.15"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10097: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:17596: Red Hat OpenShift Container Platform 4.17"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8423: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10081: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8865: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux BaseOS EUS (v. 10.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:5063: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7093: Red Hat Enterprise Linux AppStream E4S (v.9.0), Red Hat Enterprise Linux BaseOS E4S (v.9.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:6647: Red Hat Enterprise Linux AppStream E4S (v.9.2), Red Hat Enterprise Linux BaseOS E4S (v.9.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7106: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4), Red Hat Enterprise Linux BaseOS EUS (v.9.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7105: Red Hat Enterprise Linux AppStream EUS (v.9.6), Red Hat Enterprise Linux BaseOS EUS (v.9.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:5080: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25096: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7335: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16008: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8748: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8746: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8747: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16009: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16174: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7329: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8944: Red Hat Hardened Images"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9832: Red Hat Insights proxy 1.5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10065: Red Hat Update Infrastructure 5"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-03-11T11:18:51.609Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-03-11T00:00:00.000Z",
                "value": "Made public."
              }
            ],
            "title": "libarchive: Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive",
            "workarounds": [
              {
                "lang": "en",
                "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
              }
            ],
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-5.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-5.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-2.el9_0.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-4.el9_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-6.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202604080111-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202604140044-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202604211219-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775740563",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244559",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244531",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775680192",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775680262",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775749857",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775668717",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775675922",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.8.7-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868961",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868744",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868772",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868842",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unaffected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8"
              ],
              "defaultStatus": "unaffected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Elhanan Haenel for reporting this issue."
            }
          ],
          "datePublic": "2026-03-11T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This condition results in an infinite loop that continuously consumes CPU resources. Because the archive passes checksum validation and appears structurally valid, affected applications cannot detect the issue before processing. This can allow attackers to cause persistent denial-of-service conditions in services that automatically process archives."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-835",
                  "description": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-10T17:33:56.419Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10065",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10065"
            },
            {
              "name": "RHSA-2026:10081",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10081"
            },
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:16008",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16008"
            },
            {
              "name": "RHSA-2026:16009",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16009"
            },
            {
              "name": "RHSA-2026:16174",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16174"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:5063",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5063"
            },
            {
              "name": "RHSA-2026:5080",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5080"
            },
            {
              "name": "RHSA-2026:6647",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:6647"
            },
            {
              "name": "RHSA-2026:7093",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7093"
            },
            {
              "name": "RHSA-2026:7105",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7105"
            },
            {
              "name": "RHSA-2026:7106",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7106"
            },
            {
              "name": "RHSA-2026:7239",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7239"
            },
            {
              "name": "RHSA-2026:7329",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7329"
            },
            {
              "name": "RHSA-2026:7335",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7335"
            },
            {
              "name": "RHSA-2026:8423",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8423"
            },
            {
              "name": "RHSA-2026:8746",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8746"
            },
            {
              "name": "RHSA-2026:8747",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8747"
            },
            {
              "name": "RHSA-2026:8748",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8748"
            },
            {
              "name": "RHSA-2026:8865",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8865"
            },
            {
              "name": "RHSA-2026:8944",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8944"
            },
            {
              "name": "RHSA-2026:9832",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9832"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-4111"
            },
            {
              "name": "RHBZ#2446453",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446453"
            },
            {
              "url": "https://github.com/libarchive/libarchive/pull/2877"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-11T11:18:51.609Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-11T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-4111",
        "datePublished": "2026-03-13T11:45:20.653Z",
        "dateReserved": "2026-03-13T11:33:42.645Z",
        "dateUpdated": "2026-06-30T12:09:22.730Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-12801 (GCVE-0-2025-12801)

    Vulnerability from nvd – Published: 2026-03-04 15:25 – Updated: 2026-06-29 23:29
    VLAI
    Title
    Nfs-utils: rpc.mountd in the nfs-utils privilege escalation
    Summary
    A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exported directory, regardless of the set file permissions, and regardless of any 'root_squash' or 'all_squash' attributes that would normally be expected to apply to that client.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-279 - Incorrect Execution-Assigned Permissions
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:3938 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3939 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3940 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3941 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3942 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5127 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5606 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5867 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5873 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5877 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-12801 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2413081 issue-trackingx_refsource_REDHAT
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 1:2.8.3-0.el10_1.3 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 1:2.3.3-68.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 1:2.5.4-38.el9_7.3 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/a:redhat:enterprise_linux:9::crb
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 1:2.5.4-26.el9_4.3 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 1:2.5.4-34.el9_6.3 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/a:redhat:rhel_eus:9.6::crb
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202603231244-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202603242359-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202603181125-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202603251941-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 8 Unaffected: 1774002867 , < * (rpm)
        cpe:/a:redhat:ceph_storage:8::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Date Public
    2026-03-04 15:06
    Credits
    Red Hat would like to thank Simon Hall for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-12801",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-04T16:16:10.569638Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-04T16:16:16.509Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.8.3-0.el10_1.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.3.3-68.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-38.el9_7.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-38.el9_7.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-26.el9_4.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/a:redhat:rhel_eus:9.6::crb",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-34.el9_6.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202603231244-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202603242359-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202603181125-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202603251941-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:8::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-8-rhel9",
              "product": "Red Hat Ceph Storage 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1774002867",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "nfs-utils-lib",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Simon Hall for reporting this issue."
            }
          ],
          "datePublic": "2026-03-04T15:06:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the\nprivileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exported directory, regardless of the set file permissions, and regardless of any \u0027root_squash\u0027 or \u0027all_squash\u0027 attributes that would normally be expected to apply to that client."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-279",
                  "description": "Incorrect Execution-Assigned Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T23:29:08.412Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:3938",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3938"
            },
            {
              "name": "RHSA-2026:3939",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3939"
            },
            {
              "name": "RHSA-2026:3940",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3940"
            },
            {
              "name": "RHSA-2026:3941",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3941"
            },
            {
              "name": "RHSA-2026:3942",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3942"
            },
            {
              "name": "RHSA-2026:5127",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5127"
            },
            {
              "name": "RHSA-2026:5606",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5606"
            },
            {
              "name": "RHSA-2026:5867",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5867"
            },
            {
              "name": "RHSA-2026:5873",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5873"
            },
            {
              "name": "RHSA-2026:5877",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5877"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-12801"
            },
            {
              "name": "RHBZ#2413081",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413081"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-11-06T12:15:57.744Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-04T15:06:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Nfs-utils: rpc.mountd in the nfs-utils privilege escalation",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-279: Incorrect Execution-Assigned Permissions"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-12801",
        "datePublished": "2026-03-04T15:25:53.403Z",
        "dateReserved": "2025-11-06T12:17:26.749Z",
        "dateUpdated": "2026-06-29T23:29:08.412Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-13601 (GCVE-0-2025-13601)

    Vulnerability from nvd – Published: 2025-11-26 14:44 – Updated: 2026-06-29 23:29
    VLAI
    Title
    Glib: integer overflow in in g_escape_uri_string()
    Summary
    A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:0936 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0975 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0991 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1323 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1324 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1326 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1327 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1465 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1608 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1624 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1625 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1626 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1627 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1652 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1736 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18344 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18705 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2064 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2072 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2485 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2563 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2633 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2659 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2671 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2974 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3415 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4419 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7461 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-13601 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2416741 issue-trackingx_refsource_REDHAT
    https://gitlab.gnome.org/GNOME/glib/-/issues/3827
    https://gitlab.gnome.org/GNOME/glib/-/merge_reque…
    https://cert-portal.siemens.com/productcert/html/…
    Impacted products
    Vendor Product Version
    Affected: 0 , < 2.86.3 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.80.4-10.el10_1.12 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.87.0-1.el10 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:2.80.4-4.el10_0.8 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:2.56.1-11.el7_9 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.56.4-168.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:2.56.4-8.el8_2.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:2.56.4-10.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:2.56.4-10.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.56.4-158.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:2.56.4-158.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:2.56.4-158.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.56.4-164.el8_8 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.56.4-164.el8_8 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.68.4-18.el9_7.1 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/a:redhat:enterprise_linux:9::crb
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.78.6-3.el9 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:2.68.4-5.el9_0.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.68.4-7.el9_2.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.68.4-14.el9_4.5 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:2.68.4-16.el9_6.4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/a:redhat:rhel_eus:9.6::crb
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202602021310-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202602240113-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202602171627-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202603101737-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202602101357-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202602090846-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202602022246-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202602112047-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 8 Unaffected: 1769512383 , < * (rpm)
        cpe:/a:redhat:ceph_storage:8::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1769104765 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1769111774 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 2.88.0-1.1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1770740405 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770808689 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770807477 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770646925 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770808765 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8     cpe:/o:redhat:enterprise_linux:8
    Create a notification for this product.
    Siemens RUGGEDCOM RST2428P Affected: 0 , < V4.0 (custom)
    Create a notification for this product.
    Date Public
    2025-11-24 13:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-13601",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-26T14:58:08.094570Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-26T15:02:42.504Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM RST2428P",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V4.0",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T12:59:54.243Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-253495.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://gitlab.gnome.org/GNOME/glib/",
              "defaultStatus": "unaffected",
              "packageName": "glib",
              "versions": [
                {
                  "lessThan": "2.86.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.80.4-10.el10_1.12",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.2"
              ],
              "defaultStatus": "affected",
              "packageName": "mingw-glib2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.87.0-1.el10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.80.4-4.el10_0.8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.1-11.el7_9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-168.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-8.el8_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-10.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-10.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-158.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-158.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-158.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-164.el8_8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-164.el8_8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-18.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "mingw-glib2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.78.6-3.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-18.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-5.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-7.el9_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-14.el9_4.5",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/a:redhat:rhel_eus:9.6::crb",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-16.el9_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202602021310-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202602240113-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202602171627-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202603101737-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202602101357-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202602090846-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202602022246-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202602112047-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:8::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-8-rhel9",
              "product": "Red Hat Ceph Storage 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1769512383",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1769104765",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1769111774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.88.0-1.1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770740405",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770808689",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770807477",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770646925",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770808765",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8"
              ],
              "defaultStatus": "affected",
              "packageName": "mingw-glib2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat"
            }
          ],
          "datePublic": "2025-11-24T13:00:15.295Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-190",
                  "description": "Integer Overflow or Wraparound",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T23:29:30.203Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:0936",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0936"
            },
            {
              "name": "RHSA-2026:0975",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0975"
            },
            {
              "name": "RHSA-2026:0991",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0991"
            },
            {
              "name": "RHSA-2026:1323",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1323"
            },
            {
              "name": "RHSA-2026:1324",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1324"
            },
            {
              "name": "RHSA-2026:1326",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1326"
            },
            {
              "name": "RHSA-2026:1327",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1327"
            },
            {
              "name": "RHSA-2026:1465",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1465"
            },
            {
              "name": "RHSA-2026:1608",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1608"
            },
            {
              "name": "RHSA-2026:1624",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1624"
            },
            {
              "name": "RHSA-2026:1625",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1625"
            },
            {
              "name": "RHSA-2026:1626",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1626"
            },
            {
              "name": "RHSA-2026:1627",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1627"
            },
            {
              "name": "RHSA-2026:1652",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1652"
            },
            {
              "name": "RHSA-2026:1736",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1736"
            },
            {
              "name": "RHSA-2026:18344",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18344"
            },
            {
              "name": "RHSA-2026:18705",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18705"
            },
            {
              "name": "RHSA-2026:2064",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2064"
            },
            {
              "name": "RHSA-2026:2072",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2072"
            },
            {
              "name": "RHSA-2026:2485",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2485"
            },
            {
              "name": "RHSA-2026:2563",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2563"
            },
            {
              "name": "RHSA-2026:2633",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2633"
            },
            {
              "name": "RHSA-2026:2659",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2659"
            },
            {
              "name": "RHSA-2026:2671",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2671"
            },
            {
              "name": "RHSA-2026:2974",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2974"
            },
            {
              "name": "RHSA-2026:3415",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3415"
            },
            {
              "name": "RHSA-2026:4419",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4419"
            },
            {
              "name": "RHSA-2026:7461",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7461"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-13601"
            },
            {
              "name": "RHBZ#2416741",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416741"
            },
            {
              "url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3827"
            },
            {
              "url": "https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4914"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-11-24T12:49:28.274Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-11-24T13:00:15.295Z",
              "value": "Made public."
            }
          ],
          "title": "Glib: integer overflow in in g_escape_uri_string()",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-13601",
        "datePublished": "2025-11-26T14:44:22.680Z",
        "dateReserved": "2025-11-24T12:54:51.473Z",
        "dateUpdated": "2026-06-29T23:29:30.203Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61662 (GCVE-0-2025-61662)

    Vulnerability from nvd – Published: 2025-11-18 18:20 – Updated: 2026-06-30 03:12
    VLAI
    Title
    Grub2: missing unregister call for gettext command may lead to use-after-free
    Summary
    A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the application to access a memory location that is no longer valid. An attacker could exploit this vulnerability to cause grub to crash, leading to a Denial of Service. Possible data integrity or confidentiality compromise is not discarded.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4648 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4649 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4652 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4653 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4654 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4760 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4822 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4823 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4830 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4900 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4998 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5074 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5127 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5233 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:6492 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7239 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7243 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-61662 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2414683 issue-trackingx_refsource_REDHAT
    https://lists.gnu.org/archive/html/grub-devel/202…
    http://www.openwall.com/lists/oss-security/2025/11/18/5
    Impacted products
    Vendor Product Version
    GNU grub2 Affected: 0 , ≤ 2.14 (semver)
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 1:2.12-29.el10_1.2 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 1:2.12-15.el10_0.2 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 1:2.02-0.87.el7_9.16 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 1:2.02-170.el8_10.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 1:2.02-87.el8_2.14 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 1:2.02-99.el8_4.13 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 1:2.02-99.el8_4.13 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 1:2.02-123.el8_6.19 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 1:2.02-123.el8_6.19 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 1:2.02-123.el8_6.19 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 1:2.02-152.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 1:2.02-152.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 1:2.06-114.el9_7.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 1:2.06-27.el9_0.23 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 1:2.06-61.el9_2.11 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 1:2.06-86.el9_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 1:2.06-105.el9_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202604010116-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202604080111-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202603181125-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202604080618-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Date Public
    2025-11-18 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61662",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-18T18:44:47.430638Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-416",
                    "description": "CWE-416 Use After Free",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-18T18:44:53.816Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2025-11-18T22:03:43.738Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "http://www.openwall.com/lists/oss-security/2025/11/18/5"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://git.savannah.gnu.org/git/grub.git",
              "defaultStatus": "unaffected",
              "packageName": "grub2",
              "product": "grub2",
              "vendor": "GNU",
              "versions": [
                {
                  "lessThanOrEqual": "2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.12-29.el10_1.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.12-15.el10_0.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-0.87.el7_9.16",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-170.el8_10.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-87.el8_2.14",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-99.el8_4.13",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-99.el8_4.13",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-123.el8_6.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-123.el8_6.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-123.el8_6.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-152.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-152.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-114.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-27.el9_0.23",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-61.el9_2.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-86.el9_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-105.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202604010116-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202604080111-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202603181125-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202604080618-0",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "datePublic": "2025-11-18T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A Use-After-Free vulnerability has been discovered in GRUB\u0027s gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the application to access a memory location that is no longer valid. An attacker could exploit this vulnerability to cause grub to crash, leading to a Denial of Service. Possible data integrity or confidentiality compromise is not discarded."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T03:12:02.083Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:4648",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4648"
            },
            {
              "name": "RHSA-2026:4649",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4649"
            },
            {
              "name": "RHSA-2026:4652",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4652"
            },
            {
              "name": "RHSA-2026:4653",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4653"
            },
            {
              "name": "RHSA-2026:4654",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4654"
            },
            {
              "name": "RHSA-2026:4760",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4760"
            },
            {
              "name": "RHSA-2026:4822",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4822"
            },
            {
              "name": "RHSA-2026:4823",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4823"
            },
            {
              "name": "RHSA-2026:4830",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4830"
            },
            {
              "name": "RHSA-2026:4900",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4900"
            },
            {
              "name": "RHSA-2026:4998",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4998"
            },
            {
              "name": "RHSA-2026:5074",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5074"
            },
            {
              "name": "RHSA-2026:5127",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5127"
            },
            {
              "name": "RHSA-2026:5233",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5233"
            },
            {
              "name": "RHSA-2026:6492",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:6492"
            },
            {
              "name": "RHSA-2026:7239",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7239"
            },
            {
              "name": "RHSA-2026:7243",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7243"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-61662"
            },
            {
              "name": "RHBZ#2414683",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414683"
            },
            {
              "url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-11-12T21:18:21.069Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-11-18T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Grub2: missing unregister call for gettext command may lead to use-after-free",
          "workarounds": [
            {
              "lang": "en",
              "value": "There\u0027s no known mitigation available for this vulnerability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-61662",
        "datePublished": "2025-11-18T18:20:48.351Z",
        "dateReserved": "2025-09-29T20:18:48.975Z",
        "dateUpdated": "2026-06-30T03:12:02.083Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-11561 (GCVE-0-2025-11561)

    Vulnerability from nvd – Published: 2025-10-09 13:37 – Updated: 2026-03-19 17:18
    VLAI
    Title
    Sssd: sssd default kerberos configuration allows privilege escalation on ad-joined linux systems
    Summary
    A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:19610 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19847 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19848 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19849 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19850 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19851 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19852 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19853 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19854 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19859 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20954 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21020 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21067 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21329 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21795 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22256 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22265 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22277 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22529 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22548 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23113 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0316 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0677 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-11561 vdb-entryx_refsource_REDHAT
    https://blog.async.sg/kerberos-ldr
    https://bugzilla.redhat.com/show_bug.cgi?id=2402727 issue-trackingx_refsource_REDHAT
    https://github.com/SSSD/sssd/issues/8021
    Impacted products
    Vendor Product Version
    Affected: 0 , ≤ 2.11.1 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.10.2-3.el10_0.3 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.11.1-2.el10_1.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:1.16.5-10.el7_9.17 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.9.4-5.el8_10.3 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:8::baseos
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:2.2.3-20.el8_2.3 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:2.4.0-9.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
        cpe:/o:redhat:rhel_aus:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:2.4.0-9.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
        cpe:/o:redhat:rhel_aus:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.6.2-4.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:2.6.2-4.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:2.6.2-4.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.8.2-4.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.8.2-4.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.9.7-4.el9_7.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:9::baseos
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/a:redhat:enterprise_linux:9::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:2.6.2-4.el9_0.4 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.8.2-5.el9_2.6 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.9.4-6.el9_4.4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:2.9.6-4.el9_6.3 , < * (rpm)
        cpe:/o:redhat:rhel_eus:9.6::baseos
        cpe:/a:redhat:rhel_eus:9.6::crb
        cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202601061735-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202601130113-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202511122212-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202512100122-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202512030118-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202511260612-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202511170715-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202511252219-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202511252309-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 7 Unaffected: sha256:6b79ed10423d954d21dd24c9cb1cf507f6e02c2942ace7fa30cf7af2ffaeb631 , < * (rpm)
        cpe:/a:redhat:ceph_storage:7::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 8 Unaffected: sha256:04a48d31f7336e0d5958eed1ddb1a117148f791baccef4e6e08943181e6794c8 , < * (rpm)
        cpe:/a:redhat:ceph_storage:8::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Date Public
    2025-10-09 00:00
    Credits
    Red Hat would like to thank Zavier Lee for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11561",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-10T03:55:25.417800Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:57.941Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://sssd.io/",
              "defaultStatus": "unaffected",
              "packageName": "sssd",
              "versions": [
                {
                  "lessThanOrEqual": "2.11.1",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.2-3.el10_0.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.11.1-2.el10_1.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.16.5-10.el7_9.17",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos",
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.4-5.el8_10.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos",
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.4-5.el8_10.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.3-20.el8_2.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos",
                "cpe:/o:redhat:rhel_aus:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-9.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos",
                "cpe:/o:redhat:rhel_aus:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-9.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.8.2-4.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.8.2-4.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9::baseos",
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-4.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9::baseos",
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-4.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.8.2-5.el9_2.6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.4-6.el9_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus:9.6::baseos",
                "cpe:/a:redhat:rhel_eus:9.6::crb",
                "cpe:/a:redhat:rhel_eus:9.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.6-4.el9_6.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202601061735-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202601130113-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202511122212-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202512100122-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202512030118-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202511260612-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202511170715-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202511252219-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202511252309-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:7::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-7-rhel9",
              "product": "Red Hat Ceph Storage 7",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "sha256:6b79ed10423d954d21dd24c9cb1cf507f6e02c2942ace7fa30cf7af2ffaeb631",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:8::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-8-rhel9",
              "product": "Red Hat Ceph Storage 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "sha256:04a48d31f7336e0d5958eed1ddb1a117148f791baccef4e6e08943181e6794c8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Zavier Lee for reporting this issue."
            }
          ],
          "datePublic": "2025-10-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "Improper Privilege Management",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-19T17:18:09.567Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:19610",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19610"
            },
            {
              "name": "RHSA-2025:19847",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19847"
            },
            {
              "name": "RHSA-2025:19848",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19848"
            },
            {
              "name": "RHSA-2025:19849",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19849"
            },
            {
              "name": "RHSA-2025:19850",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19850"
            },
            {
              "name": "RHSA-2025:19851",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19851"
            },
            {
              "name": "RHSA-2025:19852",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19852"
            },
            {
              "name": "RHSA-2025:19853",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19853"
            },
            {
              "name": "RHSA-2025:19854",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19854"
            },
            {
              "name": "RHSA-2025:19859",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19859"
            },
            {
              "name": "RHSA-2025:20954",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20954"
            },
            {
              "name": "RHSA-2025:21020",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21020"
            },
            {
              "name": "RHSA-2025:21067",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21067"
            },
            {
              "name": "RHSA-2025:21329",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21329"
            },
            {
              "name": "RHSA-2025:21795",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21795"
            },
            {
              "name": "RHSA-2025:22256",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22256"
            },
            {
              "name": "RHSA-2025:22265",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22265"
            },
            {
              "name": "RHSA-2025:22277",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22277"
            },
            {
              "name": "RHSA-2025:22529",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22529"
            },
            {
              "name": "RHSA-2025:22548",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22548"
            },
            {
              "name": "RHSA-2025:22724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22724"
            },
            {
              "name": "RHSA-2025:23113",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23113"
            },
            {
              "name": "RHSA-2026:0316",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0316"
            },
            {
              "name": "RHSA-2026:0677",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0677"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-11561"
            },
            {
              "url": "https://blog.async.sg/kerberos-ldr"
            },
            {
              "name": "RHBZ#2402727",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402727"
            },
            {
              "url": "https://github.com/SSSD/sssd/issues/8021"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-09T12:57:29.851Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-10-09T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Sssd: sssd default kerberos configuration allows privilege escalation on ad-joined linux systems",
          "workarounds": [
            {
              "lang": "en",
              "value": "To mitigate this issue, ensure the SSSD Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is configured and the an2ln plugin is disabled by adding \"disable = an2ln\" in a krb5 include file, for example /var/lib/sss/pubconf/krb5.include.d/localauth_plugin and make sure it is included in the Kerberos configuration. Apply vendor updates and follow Red Hat guidance for SSSD hardening."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-269: Improper Privilege Management"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-11561",
        "datePublished": "2025-10-09T13:37:53.089Z",
        "dateReserved": "2025-10-09T13:03:30.189Z",
        "dateUpdated": "2026-03-19T17:18:09.567Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-11234 (GCVE-0-2025-11234)

    Vulnerability from nvd – Published: 2025-10-03 10:30 – Updated: 2026-06-01 03:03
    VLAI
    Title
    Qemu-kvm: vnc websocket handshake use-after-free
    Summary
    A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:23228 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0326 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0332 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0702 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1831 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18772 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:22147 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3077 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3165 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5578 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-11234 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2401209 issue-trackingx_refsource_REDHAT
    Impacted products
    Vendor Product Version
    Affected: 2.6.0 , < 10.1.2 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 18:10.0.0-14.el10_1.5 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020251120003312.489197e6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020251202222937.489197e6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 17:10.1.0-17.el9_8 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 17:6.2.0-11.el9_0.10 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 17:7.2.0-14.el9_2.24 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 17:8.2.0-11.el9_4.18 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 17:8.2.0-11.el9_4.19 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202601071926-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202601120213-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202601071817-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Date Public
    2025-09-30 12:18
    Credits
    Red Hat would like to thank Grant Millar (Cylo) for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11234",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-03T15:56:54.379790Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-03T15:57:08.606Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://gitlab.com/qemu-project/qemu",
              "defaultStatus": "unaffected",
              "packageName": "qemu",
              "versions": [
                {
                  "lessThan": "10.1.2",
                  "status": "affected",
                  "version": "2.6.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "18:10.0.0-14.el10_1.5",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "virt-devel:rhel",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020251120003312.489197e6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "virt:rhel",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020251202222937.489197e6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:10.1.0-17.el9_8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:6.2.0-11.el9_0.10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:7.2.0-14.el9_2.24",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:8.2.0-11.el9_4.18",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:8.2.0-11.el9_4.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202601071926-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202601120213-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202601071817-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unaffected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unaffected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm-ma",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Grant Millar (Cylo) for reporting this issue."
            }
          ],
          "datePublic": "2025-09-30T12:18:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:03:58.100Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:23228",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23228"
            },
            {
              "name": "RHSA-2026:0326",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0326"
            },
            {
              "name": "RHSA-2026:0332",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0332"
            },
            {
              "name": "RHSA-2026:0702",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0702"
            },
            {
              "name": "RHSA-2026:1831",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1831"
            },
            {
              "name": "RHSA-2026:18772",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18772"
            },
            {
              "name": "RHSA-2026:22147",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:22147"
            },
            {
              "name": "RHSA-2026:3077",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3077"
            },
            {
              "name": "RHSA-2026:3165",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3165"
            },
            {
              "name": "RHSA-2026:5578",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5578"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-11234"
            },
            {
              "name": "RHBZ#2401209",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401209"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-09-30T00:00:00.000Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-09-30T12:18:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Qemu-kvm: vnc websocket handshake use-after-free",
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-416: Use After Free"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-11234",
        "datePublished": "2025-10-03T10:30:34.427Z",
        "dateReserved": "2025-10-01T17:03:04.737Z",
        "dateUpdated": "2026-06-01T03:03:58.100Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-4953 (GCVE-0-2025-4953)

    Vulnerability from nvd – Published: 2025-09-16 14:54 – Updated: 2026-06-30 10:40
    VLAI
    Title
    Podman: build context bind mount
    Summary
    A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-378 - Creation of Temporary File With Insecure Permissions
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2024:8690 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15904 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16729 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:17669 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22265 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22275 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22695 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22732 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23113 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:2703 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0316 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-4953 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2367235 issue-trackingx_refsource_REDHAT
    https://github.com/containers/podman/pull/25173
    Impacted products
    Vendor Product Version
    Affected: 0 , < * (git)
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020250911075811.afee755d , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 3:4.2.0-15.rhaos4.12.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202601061735-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1:1.29.1-5.rhaos4.13.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 3:2.1.7-5.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1:1.4.0-5.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:1.26.5-26.rhaos4.13.giteb3d487.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:1.26.0-7.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:2.2.24-5.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:2.15.0-10.rhaos4.13.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.g53fd427.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.gd2acdd5.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.g1397e80.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.gd192e90.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.g36754b7.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 3:4.4.1-15.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 4:1.1.14-2.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 2:1.11.3-4.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1:1.29.5-1.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:5.14.0-284.109.1.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:5.14.0-284.109.1.rt14.394.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 3:4.4.1-16.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202511261311-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202512031525-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202512100122-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:4.9.4-16.rhaos4.16.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202512030118-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202511260612-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 5:5.2.2-2.rhaos4.18.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202512022246-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10     cpe:/o:redhat:enterprise_linux:10
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9     cpe:/o:redhat:enterprise_linux:9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4     cpe:/a:redhat:openshift:4
    Create a notification for this product.
    Date Public
    2025-09-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-4953",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-09-16T16:15:17.109594Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-16T16:15:21.591Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/containers/podman/",
              "defaultStatus": "unknown",
              "packageName": "podman",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "50295e5e5d1a4583d26d5c6d5c0608cff498cc8d",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "*",
                  "status": "affected",
                  "version": "0",
                  "versionType": "git"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020250911075811.afee755d",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.2.0-15.rhaos4.12.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202601061735-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "buildah",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.29.1-5.rhaos4.13.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "conmon",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:2.1.7-5.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "containernetworking-plugins",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.4.0-5.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.26.5-26.rhaos4.13.giteb3d487.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-tools",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.26.0-7.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "haproxy",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.24-5.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ignition",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.15.0-10.rhaos4.13.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.g53fd427.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4-aws-iso",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.gd2acdd5.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.g1397e80.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-clients",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.gd192e90.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-kuryr",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.g36754b7.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-15.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "runc",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:1.1.14-2.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "skopeo",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:1.11.3-4.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "buildah",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.29.5-1.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.109.1.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.109.1.rt14.394.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-16.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202511261311-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202512031525-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202512100122-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-16.rhaos4.16.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202512030118-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202511260612-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.2.2-2.rhaos4.18.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202512022246-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10"
              ],
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9"
              ],
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4",
              "vendor": "Red Hat"
            }
          ],
          "datePublic": "2025-09-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-378",
                  "description": "Creation of Temporary File With Insecure Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T10:40:26.109Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2024:8690",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2024:8690"
            },
            {
              "name": "RHSA-2025:15904",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15904"
            },
            {
              "name": "RHSA-2025:16724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16724"
            },
            {
              "name": "RHSA-2025:16729",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16729"
            },
            {
              "name": "RHSA-2025:17669",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:17669"
            },
            {
              "name": "RHSA-2025:22265",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22265"
            },
            {
              "name": "RHSA-2025:22275",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22275"
            },
            {
              "name": "RHSA-2025:22695",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22695"
            },
            {
              "name": "RHSA-2025:22724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22724"
            },
            {
              "name": "RHSA-2025:22732",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22732"
            },
            {
              "name": "RHSA-2025:23113",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23113"
            },
            {
              "name": "RHSA-2025:2703",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:2703"
            },
            {
              "name": "RHSA-2026:0316",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0316"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-4953"
            },
            {
              "name": "RHBZ#2367235",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367235"
            },
            {
              "url": "https://github.com/containers/podman/pull/25173"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-05-19T11:46:53.335Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-09-16T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Podman: build context bind mount",
          "workarounds": [
            {
              "lang": "en",
              "value": "Avoid long-running build steps and overly permissive file permissions. Use RUN --mount=type=secret for sensitive data instead of bind mounts."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-378: Creation of Temporary File With Insecure Permissions"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-4953",
        "datePublished": "2025-09-16T14:54:50.045Z",
        "dateReserved": "2025-05-19T11:55:32.522Z",
        "dateUpdated": "2026-06-30T10:40:26.109Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-9566 (GCVE-0-2025-9566)

    Vulnerability from nvd – Published: 2025-09-05 19:54 – Updated: 2026-06-29 20:49
    VLAI
    Title
    Podman: podman kube play command may overwrite host files
    Summary
    There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file. Binary-Affected: podman Upstream-version-introduced: v4.0.0 Upstream-version-fixed: v5.6.1
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHBA-2025:15692 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHBA-2025:15712 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHBA-2025:16158 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHBA-2025:16163 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHEA-2025:4782 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15900 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15901 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15904 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16480 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16481 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16482 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16488 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16515 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:17669 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18217 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18218 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18240 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19002 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19041 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19046 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19094 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19894 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20909 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20983 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18289 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18722 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8211 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-9566 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2393152 issue-trackingx_refsource_REDHAT
    https://github.com/containers/podman/commit/43fbd…
    https://github.com/containers/podman/security/adv…
    Impacted products
    Vendor Product Version
    Affected: 4.0.0 , < 5.6.1 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 6:5.4.0-13.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 7:5.6.0-5.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 7:5.8.0-2.el10 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020250911075811.afee755d , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 8060020250919150821.3b538bd8 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 8060020250919150821.3b538bd8 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 8060020250919150821.3b538bd8 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 8080020250919060528.0f77c1b7 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 8080020250919060528.0f77c1b7 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 5:5.4.0-13.el9_6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 6:5.6.0-6.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 6:5.8.0-1.el9 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 2:4.2.0-6.el9_0.5 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 2:4.4.1-22.el9_2.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 4:4.9.4-18.el9_4.3 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 0:4.18.0-372.164.1.el8_6 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 0:4.18.0-372.164.1.rt7.325.el8_6 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 3:4.2.0-15.rhaos4.12.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202510291903-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202510150118-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 0:5.14.0-284.138.1.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el8
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 0:5.14.0-284.138.1.rt14.423.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el8
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 3:4.4.1-23.rhaos4.14.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el8
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202510211419-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 0:5.14.0-284.138.1.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el8
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 0:5.14.0-284.138.1.rt14.423.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el8
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 3:4.4.1-35.rhaos4.15.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el8
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:2.237.0-2.rhaos4.16.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 0:4.16.0-202509111927.p2.gf3d9123.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:4.9.4-16.rhaos4.16.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202510112152-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 4:2.237.0-1.rhaos4.18.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:1.31.12-3.rhaos4.18.gitdc59c78.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:5.14.0-427.87.1.el9_4 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:4.18.0-202509090932.p2.ga4cad44.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:4.18.0-202509011551.p2.g018e43a.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 5:5.2.2-11.rhaos4.18.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202510230424-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4:2.237.0-1.rhaos4.19.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 0:1.32.8-3.rhaos4.19.git60d4e21.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 0:4.19.0-202509070341.p2.gb5229e8.assembly.stream.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 5:5.4.0-7.rhaos4.19.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202510140714-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.12.1-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4:2.237.0-1.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.33.4-4.rhaos4.20.gitc8e7df2.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.33.0-1.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.18-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.4-3.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.18.3-8.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.17.0-4.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509232257.p2.ge0d4216.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gd2acdd5.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.g75653ac.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.ga434281.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2023.1.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gbb88da1.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gd469d04.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gf940e72.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 5:5.4.0-12.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.2-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.1-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.2.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.9-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.4.12-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.4-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.33-1.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.3.2-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:2.8.2-10.3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.2-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.16.0-13.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.13.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.3.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.2-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.4-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-6.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:22.2.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.0-0.20250214184706.9255778.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.0-2.el9ocp.3 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.6-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.12.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.1-13.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.31.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.3.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.0-17.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.3-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2020.12.5-2.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.2.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:10.0.1-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:9.5.0-0.20240522170018.e01516d.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.1.3-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.9.1-0.20250327182035.083572e.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-3.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.6-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.10.56-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:21.6.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.6-0.1b1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.1-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.0-0.20250214185318.0e6ce1c.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.1.1-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.6-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.19-5.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.5-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.0.1-1.20241010230108.da7647f.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.20.46-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.4-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.2-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.40.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.9.0-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-29.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.19-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.12.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0.1-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 2:2.2.5-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.9.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.2-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.2-31.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.0-0.20250320142819.bd83787.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.4.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.7.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:4.5.0-0.20240522162619.f683776.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:20.0.4-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.0.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:24.1.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.21.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:1.1-5.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.20.4-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.5-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.82.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.7-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.1.6-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.1-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.9.6-26.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.9.0-0.20211209154935.6f1be06.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.5.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.1.12-9.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.4.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.1-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.2.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.0-5.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.6-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.21-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.3-23.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.2-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.10-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.17.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.3-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.7.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.0-12.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:25.6.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.10.0-0.20250410121004.60f441a.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:5.6.0-0.20250320142042.0d43c46.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:10.9.0-0.20250320143526.557d173.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:5.3.3-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.7-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.10-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-25.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.5-24.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.3-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.0-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.58-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.1-0.20240522145956.2c36df6.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.13.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.0-17.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.3-15.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0.3-10.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5-10.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.13.0-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.5-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.5.0-13.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.7-42.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.2-6.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.6.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.0-0.20250320142042.d3fdae8.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.0-0.20210722194730.bc96c23.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.10.1-0.20250320152415.0a940fc.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.1.0-0.20250320152408.6250095.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 2:9.7.1-0.20250320144138.d583141.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:17.2.1-0.20250408142043.dc60623.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.5.1-0.20250320144953.162e0fa.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.2.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:16.1.0-0.20250320153323.e91bb45.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.11.0-0.20250320150939.c64d51c.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.3.1-0.20250320145060.8af9987.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.5.1-0.20250320145711.3bb5d92.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.5.1-0.20250328152037.d8148bf.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.7.0-0.20250320153129.bff992d.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.1.1-0.20250320154558.7a52803.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.4.1-0.20210812115054.aaf3a72.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.5.0-0.20250320145717.27366ba.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.2.0-0.20250408162039.cb68378.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.6.0-0.20250320151147.79e9d5d.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.2.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.7.0-0.20250214183755.0b2f473.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.3.0-0.20250320143432.1b608ff.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.5.3-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.1.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.2-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.13.0-5.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.8.0-17.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.0.1-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.9.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.8-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.6.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.9.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.0-5.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.11.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.2-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0.1-0.20250320142810.3cea59f.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.11.0-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.10.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.45.2-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.34-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.15.1-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.5.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.0-4.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.19.3-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.18.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.11.1-4.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.6.3-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.12.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:10.2-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0-20.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.0-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.5.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.22.2-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.22.0-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.32.3-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-0.20250214183755.d7ac0ff.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.12.0-13.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.0-3.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.3-3.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.0-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.4.1-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.2.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.3.3-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.1.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.1.0-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.4-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.1-18.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.17.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.4.0.3-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.4-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.2.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.3.0-3.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.0-3.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:6.2.1-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.2-14.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.7.0-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.1-22.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.3-15.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.16-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.54-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.4-10.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.1-20.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6.0-8.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.4.1-0.20250320150534.27e27c1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.6.0-0.20250507082031.06e32b5.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.2-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.14.1-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.5.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.6.0-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.20-20.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-11.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.0-22.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.2-13.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-9.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.3.0-0.20250214203240.734acc4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.1.0-3.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.14.2-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.14-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-25.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2023.10.18-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.1.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.12.2-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.9.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1-2.3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:20.21.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.11.7-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.3-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.5-3.el9ocp.3 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.1-16.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.8-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.33-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.2.3-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.17.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.12.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.3-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.6-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.2-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.24.4-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.19.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.2-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.2.0-21.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.4.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.7-5.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2024.2-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-7.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.1.2-1.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.14.0-2.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202510220229-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 5.8.2-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat OpenShift Dev Spaces (RHOSDS) 3.24 Unaffected: 3.24-1760921292 , < * (rpm)
        cpe:/a:redhat:openshift_devspaces:3.24::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Dev Spaces (RHOSDS) 3.24 Unaffected: 3.24-1761160160 , < * (rpm)
        cpe:/a:redhat:openshift_devspaces:3.24::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4     cpe:/a:redhat:openshift:4
    Create a notification for this product.
    Date Public
    2025-09-04 00:00
    Credits
    This issue was discovered by Paul Holzinger (Red Hat).
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-9566",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-09-05T20:16:38.360629Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-05T20:16:46.977Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/containers/podman",
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "versions": [
                {
                  "lessThan": "5.6.1",
                  "status": "affected",
                  "version": "4.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.4.0-13.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7:5.6.0-5.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.2"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7:5.8.0-2.el10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020250911075811.afee755d",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8060020250919150821.3b538bd8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8060020250919150821.3b538bd8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8060020250919150821.3b538bd8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8080020250919060528.0f77c1b7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8080020250919060528.0f77c1b7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-13.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.6.0-6.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.8.0-1.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:4.2.0-6.el9_0.5",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:4.4.1-22.el9_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-18.el9_4.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-372.164.1.el8_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-372.164.1.rt7.325.el8_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.2.0-15.rhaos4.12.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202510291903-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202510150118-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el8",
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el8",
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.rt14.423.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el8",
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-23.rhaos4.14.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202510211419-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el8",
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el8",
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.rt14.423.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el8",
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-35.rhaos4.15.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-2.rhaos4.16.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.16.0-202509111927.p2.gf3d9123.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-16.rhaos4.16.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202510112152-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.18.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.31.12-3.rhaos4.18.gitdc59c78.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-427.87.1.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-202509090932.p2.ga4cad44.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-202509011551.p2.g018e43a.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.2.2-11.rhaos4.18.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202510230424-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.19.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.32.8-3.rhaos4.19.git60d4e21.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.19.0-202509070341.p2.gb5229e8.assembly.stream.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-7.rhaos4.19.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202510140714-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "babel",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.12.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.4-4.rhaos4.20.gitc8e7df2.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-tools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.0-1.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "dbus-python3.12",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.18-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ephemeral-port-reserve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.4-3.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "future",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kata-containers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-4.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509232257.p2.ge0d4216.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4-aws-iso",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd2acdd5.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.g75653ac.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-clients",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.ga434281.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openstack-macros",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-aws-ecr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gbb88da1.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-azure-acr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd469d04.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-gcp-gcr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gf940e72.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-12.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "poetry",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyflakes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyOpenSSL",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyparsing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.9-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.12-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmpcrypto",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.4-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.33-1.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.3.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-dateutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.8.2-10.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-mypy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-pyyaml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-six",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.16.0-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-alembic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.13.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-amqp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-apipkg",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-appdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-async-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-atomicwrites",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-6.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-attrs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:22.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-automaton",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250214184706.9255778.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-autopage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-2.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-bcrypt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-beautifulsoup4",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-betamax",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-binary-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.31.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-build",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachetools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-case",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-certifi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2020.12.5-2.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-chardet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cheroot",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cinderclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:9.5.0-0.20240522170018.e01516d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cleo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-click",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.1.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cliff",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.1-0.20250327182035.083572e.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cmd2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-colorama",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-construct",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.56-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-contextlib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:21.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-coverage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6-0.1b1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-crashtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ddt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-debtcollector",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-0.20250214185318.0e6ce1c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-decorator",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.1.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-defusedxml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-distlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.6-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dns",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-docutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dogpile-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dracclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.0.1-1.20241010230108.da7647f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dulwich",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.46-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editables",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editor",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.4-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-elementpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-eventlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.40.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-execnet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.9.0-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-extras",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-29.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fasteners",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-filelock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fixtures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flake8",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flask",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:2.2.5-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-freezegun",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-funcsigs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-31.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-futurist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-0.20250320142819.bd83787.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gabbi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gevent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-glanceclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:4.5.0-0.20240522162619.f683776.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-greenlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gunicorn",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.0.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hacking",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-fancy-pypi-readme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:24.1.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatchling",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-vcs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-html5lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.1-5.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httplib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.4-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httpretty",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.82.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesmith",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-idna",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ifaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-imagesize",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iniparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-inotify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-26.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironicclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.0-0.20211209154935.6f1be06.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironic-prometheus-exporter",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iso8601",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.12-9.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-itsdangerous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-classes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.1-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-functools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-text",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jeepney",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jinja2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jmespath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-23.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw-ext",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpointer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.10-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.17.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kafka",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kazoo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-12.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keyring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:25.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneauth1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.10.0-0.20250410121004.60f441a.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.6.0-0.20250320142042.0d43c46.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystonemiddleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.9.0-0.20250320143526.557d173.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kiwisolver",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kombu",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.3.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-lark",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.7-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-libcst",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.10-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-linecache2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-logutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.5-24.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-m2r",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mako",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-markupsafe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mccabe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.58-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-microversion-parse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-0.20240522145956.2c36df6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-migrate",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mimeparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-17.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mistune",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.3-15.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.3-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-monotonic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5-10.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-more-itertools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.13.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-msgpack",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-munch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-13.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mypy_extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-netaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-nose",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.7-42.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oauthlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.2-6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstackdocstheme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstacksdk",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.6.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osc-lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250320142042.d3fdae8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-client-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-0.20210722194730.bc96c23.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.10.1-0.20250320152415.0a940fc.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-concurrency",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-0.20250320152408.6250095.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:9.7.1-0.20250320144138.d583141.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-db",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:17.2.1-0.20250408142043.dc60623.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-i18n",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.5.1-0.20250320144953.162e0fa.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-log",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-messaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:16.1.0-0.20250320153323.e91bb45.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-metrics",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.0-0.20250320150939.c64d51c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-middleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.1-0.20250320145060.8af9987.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-policy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.1-0.20250320145711.3bb5d92.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-rootwrap",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.5.1-0.20250328152037.d8148bf.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-serialization",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.7.0-0.20250320153129.bff992d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-service",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.1-0.20250320154558.7a52803.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslotest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.1-0.20210812115054.aaf3a72.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-upgradecheck",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-0.20250320145717.27366ba.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-utils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.0-0.20250408162039.cb68378.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-versionedobjects",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-0.20250320151147.79e9d5d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osprofiler",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-service-types",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-0.20250214183755.0b2f473.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-traits",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.0-0.20250320143432.1b608ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste-deploy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pathspec",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pbr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pecan",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pep517",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pexpect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.8.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pint",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pkginfo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.0.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-platformdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pluggy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-poetry-core",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-portend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pretend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.8-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prettytable",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prometheus_client",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-psutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.9.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ptyprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-py",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasn1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasyncore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycadf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-0.20250320142810.3cea59f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycdlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycodestyle",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycurl",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.45.2-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyghmi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.34-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pygments",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.15.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pymemcache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyperclip",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-4.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-api",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-hooks",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyrsistent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-asyncio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-cov",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.11.1-4.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-forked",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-lazy-fixture",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-rerunfailures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.2-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-runner",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xdist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyudev",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-railroad-diagrams",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-redis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-repoze-lru",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.32.3-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requestsexceptions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-0.20250214183755.d7ac0ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.12.0-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-toolbelt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-unixsocket",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-retrying",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rfc3986",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-routes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.1-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rst-linker",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-SecretStorage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-service-identity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.1.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-setuptools_scm",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-shellingham",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplegeneric",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-18.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplejson",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-singledispatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0.3-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.4-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-snowballstemmer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sortedcontainers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.3.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-soupsieve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:6.2.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-applehelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-devhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-htmlhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-httpdomain",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jquery",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jsmath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-22.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-qthelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-15.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-serializinghtml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx_rtd_theme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx-theme-alabaster",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.16-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlalchemy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.54-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.4-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-statsd",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.1-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stestr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-8.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stevedore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.1-0.20250320150534.27e27c1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sure",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sushy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6.0-0.20250507082031.06e32b5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempita",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempora",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.14.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tenacity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.0-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testrepository",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.20-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testresources",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-11.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testscenarios",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.0-22.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testtools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-toml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.2-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli-w",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-9.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tooz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.0-0.20250214203240.734acc4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tornado",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.14.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox-current-env",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.14-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-traceback2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trove-classifiers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.10.18-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trustme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typeguard",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-inspect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-uhashring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1-2.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-vine",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-virtualenv",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-voluptuous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.7-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-waitress",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-warlock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wcwidth",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.5-3.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webencodings",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-16.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webob",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.8-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-websockify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.33-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-werkzeug",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wrapt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.17.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wsgi_intercept",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.12.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-xmlschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-yappi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zake",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.2-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zeroconf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.24.4-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zipp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.19.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zombie-imp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-event",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-21.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-interface",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-testing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.7-5.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2024.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "subunit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-7.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "toolbox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.2-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "wasmedge",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.14.0-2.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202510220229-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "babel",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.12.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.4-4.rhaos4.20.gitc8e7df2.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-tools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.0-1.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "dbus-python3.12",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.18-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ephemeral-port-reserve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.4-3.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "future",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kata-containers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-4.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509232257.p2.ge0d4216.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4-aws-iso",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd2acdd5.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.g75653ac.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-clients",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.ga434281.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openstack-macros",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-aws-ecr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gbb88da1.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-azure-acr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd469d04.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-gcp-gcr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gf940e72.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-12.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "poetry",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyflakes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyOpenSSL",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyparsing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.9-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.12-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmpcrypto",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.4-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.33-1.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.3.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-dateutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.8.2-10.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-mypy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-pyyaml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-six",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.16.0-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-alembic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.13.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-amqp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-apipkg",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-appdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-async-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-atomicwrites",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-6.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-attrs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:22.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-automaton",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250214184706.9255778.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-autopage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-2.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-bcrypt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-beautifulsoup4",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-betamax",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-binary-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.31.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-build",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachetools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-case",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-certifi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2020.12.5-2.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-chardet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cheroot",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cinderclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:9.5.0-0.20240522170018.e01516d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cleo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-click",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.1.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cliff",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.1-0.20250327182035.083572e.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cmd2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-colorama",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-construct",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.56-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-contextlib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:21.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-coverage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6-0.1b1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-crashtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ddt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-debtcollector",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-0.20250214185318.0e6ce1c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-decorator",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.1.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-defusedxml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-distlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.6-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dns",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-docutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dogpile-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dracclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.0.1-1.20241010230108.da7647f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dulwich",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.46-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editables",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editor",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.4-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-elementpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-eventlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.40.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-execnet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.9.0-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-extras",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-29.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fasteners",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-filelock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fixtures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flake8",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flask",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:2.2.5-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-freezegun",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-funcsigs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-31.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-futurist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-0.20250320142819.bd83787.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gabbi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gevent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-glanceclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:4.5.0-0.20240522162619.f683776.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-greenlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gunicorn",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.0.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hacking",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-fancy-pypi-readme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:24.1.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatchling",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-vcs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-html5lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.1-5.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httplib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.4-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httpretty",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.82.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesmith",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-idna",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ifaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-imagesize",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iniparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-inotify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-26.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironicclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.0-0.20211209154935.6f1be06.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironic-prometheus-exporter",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iso8601",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.12-9.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-itsdangerous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-classes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.1-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-functools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-text",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jeepney",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jinja2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jmespath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-23.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw-ext",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpointer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.10-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.17.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kafka",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kazoo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-12.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keyring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:25.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneauth1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.10.0-0.20250410121004.60f441a.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.6.0-0.20250320142042.0d43c46.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystonemiddleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.9.0-0.20250320143526.557d173.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kiwisolver",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kombu",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.3.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-lark",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.7-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-libcst",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.10-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-linecache2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-logutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.5-24.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-m2r",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mako",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-markupsafe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mccabe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.58-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-microversion-parse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-0.20240522145956.2c36df6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-migrate",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mimeparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-17.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mistune",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.3-15.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.3-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-monotonic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5-10.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-more-itertools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.13.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-msgpack",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-munch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-13.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mypy_extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-netaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-nose",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.7-42.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oauthlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.2-6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstackdocstheme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstacksdk",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.6.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osc-lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250320142042.d3fdae8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-client-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-0.20210722194730.bc96c23.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.10.1-0.20250320152415.0a940fc.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-concurrency",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-0.20250320152408.6250095.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:9.7.1-0.20250320144138.d583141.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-db",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:17.2.1-0.20250408142043.dc60623.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-i18n",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.5.1-0.20250320144953.162e0fa.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-log",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-messaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:16.1.0-0.20250320153323.e91bb45.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-metrics",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.0-0.20250320150939.c64d51c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-middleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.1-0.20250320145060.8af9987.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-policy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.1-0.20250320145711.3bb5d92.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-rootwrap",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.5.1-0.20250328152037.d8148bf.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-serialization",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.7.0-0.20250320153129.bff992d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-service",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.1-0.20250320154558.7a52803.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslotest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.1-0.20210812115054.aaf3a72.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-upgradecheck",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-0.20250320145717.27366ba.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-utils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.0-0.20250408162039.cb68378.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-versionedobjects",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-0.20250320151147.79e9d5d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osprofiler",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-service-types",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-0.20250214183755.0b2f473.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-traits",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.0-0.20250320143432.1b608ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste-deploy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pathspec",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pbr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pecan",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pep517",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pexpect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.8.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pint",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pkginfo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.0.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-platformdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pluggy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-poetry-core",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-portend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pretend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.8-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prettytable",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prometheus_client",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-psutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.9.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ptyprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-py",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasn1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasyncore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycadf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-0.20250320142810.3cea59f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycdlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycodestyle",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycurl",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.45.2-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyghmi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.34-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pygments",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.15.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pymemcache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyperclip",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-4.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-api",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-hooks",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyrsistent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-asyncio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-cov",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.11.1-4.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-forked",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-lazy-fixture",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-rerunfailures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.2-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-runner",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xdist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyudev",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-railroad-diagrams",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-redis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-repoze-lru",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.32.3-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requestsexceptions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-0.20250214183755.d7ac0ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.12.0-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-toolbelt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-unixsocket",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-retrying",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rfc3986",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-routes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.1-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rst-linker",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-SecretStorage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-service-identity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.1.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-setuptools_scm",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-shellingham",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplegeneric",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-18.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplejson",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-singledispatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0.3-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.4-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-snowballstemmer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sortedcontainers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.3.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-soupsieve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:6.2.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-applehelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-devhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-htmlhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-httpdomain",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jquery",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jsmath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-22.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-qthelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-15.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-serializinghtml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx_rtd_theme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx-theme-alabaster",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.16-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlalchemy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.54-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.4-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-statsd",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.1-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stestr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-8.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stevedore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.1-0.20250320150534.27e27c1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sure",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sushy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6.0-0.20250507082031.06e32b5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempita",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempora",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.14.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tenacity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.0-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testrepository",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.20-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testresources",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-11.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testscenarios",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.0-22.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testtools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-toml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.2-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli-w",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-9.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tooz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.0-0.20250214203240.734acc4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tornado",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.14.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox-current-env",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.14-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-traceback2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trove-classifiers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.10.18-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trustme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typeguard",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-inspect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-uhashring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1-2.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-vine",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-virtualenv",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-voluptuous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.7-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-waitress",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-warlock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wcwidth",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.5-3.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webencodings",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-16.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webob",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.8-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-websockify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.33-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-werkzeug",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wrapt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.17.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wsgi_intercept",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.12.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-xmlschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-yappi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zake",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.2-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zeroconf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.24.4-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zipp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.19.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zombie-imp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-event",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-21.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-interface",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-testing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.7-5.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2024.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "subunit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-7.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "toolbox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.2-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "wasmedge",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.14.0-2.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "podman-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5.8.2-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_devspaces:3.24::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "devspaces/udi-base-rhel9",
              "product": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.24-1760921292",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_devspaces:3.24::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "devspaces/udi-rhel9",
              "product": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.24-1761160160",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "This issue was discovered by Paul Holzinger (Red Hat)."
            }
          ],
          "datePublic": "2025-09-04T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1"
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T20:49:13.397Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHBA-2025:15692",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:15692"
            },
            {
              "name": "RHBA-2025:15712",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:15712"
            },
            {
              "name": "RHBA-2025:16158",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:16158"
            },
            {
              "name": "RHBA-2025:16163",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:16163"
            },
            {
              "name": "RHEA-2025:4782",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHEA-2025:4782"
            },
            {
              "name": "RHSA-2025:15900",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15900"
            },
            {
              "name": "RHSA-2025:15901",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15901"
            },
            {
              "name": "RHSA-2025:15904",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15904"
            },
            {
              "name": "RHSA-2025:16480",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16480"
            },
            {
              "name": "RHSA-2025:16481",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16481"
            },
            {
              "name": "RHSA-2025:16482",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16482"
            },
            {
              "name": "RHSA-2025:16488",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16488"
            },
            {
              "name": "RHSA-2025:16515",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16515"
            },
            {
              "name": "RHSA-2025:16724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16724"
            },
            {
              "name": "RHSA-2025:17669",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:17669"
            },
            {
              "name": "RHSA-2025:18217",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18217"
            },
            {
              "name": "RHSA-2025:18218",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18218"
            },
            {
              "name": "RHSA-2025:18240",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18240"
            },
            {
              "name": "RHSA-2025:19002",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19002"
            },
            {
              "name": "RHSA-2025:19041",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19041"
            },
            {
              "name": "RHSA-2025:19046",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19046"
            },
            {
              "name": "RHSA-2025:19094",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19094"
            },
            {
              "name": "RHSA-2025:19894",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19894"
            },
            {
              "name": "RHSA-2025:20909",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20909"
            },
            {
              "name": "RHSA-2025:20983",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20983"
            },
            {
              "name": "RHSA-2026:18289",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18289"
            },
            {
              "name": "RHSA-2026:18722",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18722"
            },
            {
              "name": "RHSA-2026:8211",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8211"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-9566"
            },
            {
              "name": "RHBZ#2393152",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
            },
            {
              "url": "https://github.com/containers/podman/commit/43fbde4e665fe6cee6921868f04b7ccd3de5ad89"
            },
            {
              "url": "https://github.com/containers/podman/security/advisories/GHSA-wp3j-xq48-xpjw"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-09-04T15:45:46.448Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-09-04T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Podman: podman kube play command may overwrite host files",
          "workarounds": [
            {
              "lang": "en",
              "value": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-9566",
        "datePublished": "2025-09-05T19:54:30.503Z",
        "dateReserved": "2025-08-27T22:17:43.489Z",
        "dateUpdated": "2026-06-29T20:49:13.397Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-7425 (GCVE-0-2025-7425)

    Vulnerability from nvd – Published: 2025-07-10 13:53 – Updated: 2026-06-29 20:46
    VLAI
    Title
    Libxslt: libxml2: heap use-after-free in libxslt caused by atype corruption in xmlattrptr
    Summary
    A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHBA-2025:12345 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:12447 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:12450 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13267 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13308 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13309 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13310 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13311 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13312 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13313 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13314 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13335 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13464 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13622 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14059 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14396 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14818 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14819 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14853 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14858 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15308 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15672 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15827 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15828 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18219 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21885 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21913 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0934 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:11503 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-7425 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2379274 issue-trackingx_refsource_REDHAT
    https://gitlab.gnome.org/GNOME/libxslt/-/issues/140
    https://lists.debian.org/debian-lts-announce/2025…
    http://seclists.org/fulldisclosure/2025/Aug/0
    http://seclists.org/fulldisclosure/2025/Jul/37
    http://seclists.org/fulldisclosure/2025/Jul/35
    http://seclists.org/fulldisclosure/2025/Jul/32
    http://seclists.org/fulldisclosure/2025/Jul/30
    http://www.openwall.com/lists/oss-security/2025/07/11/2
    https://cert-portal.siemens.com/productcert/html/…
    https://cert-portal.siemens.com/productcert/html/…
    https://cert-portal.siemens.com/productcert/html/…
    https://cert-portal.siemens.com/productcert/html/…
    Impacted products
    Vendor Product Version
    GNOME libxml2 Affected: 0 , < 2.15.2 (semver)
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.12.5-8.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:1.1.39-8.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:2.9.1-6.el7_9.12 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.9.7-21.el8_10.2 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:2.9.7-9.el8_2.4 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.2::appstream
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:2.9.7-9.el8_4.7 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.4::appstream
        cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:2.9.7-9.el8_4.7 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.4::appstream
        cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.9.7-13.el8_6.11 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:2.9.7-13.el8_6.11 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:2.9.7-13.el8_6.11 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.9.7-16.el8_8.10 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.9.7-16.el8_8.10 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.9.13-11.el9_6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:2.9.13-1.el9_0.6 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.9.13-3.el9_2.8 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.9.13-11.el9_4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202509030110-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202509030117-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202508270040-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202508192014-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202508261955-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202508141510-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202508261658-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202508271124-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Web Terminal 1.11 on RHEL 9 Unaffected: 1.11-19 , < * (rpm)
        cpe:/a:redhat:webterminal:1.11::el9
    Create a notification for this product.
    Red Hat Red Hat Web Terminal 1.11 on RHEL 9 Unaffected: 1.11-8 , < * (rpm)
        cpe:/a:redhat:webterminal:1.11::el9
    Create a notification for this product.
    Red Hat Red Hat Web Terminal 1.12 on RHEL 9 Unaffected: 1.12-4 , < * (rpm)
        cpe:/a:redhat:webterminal:1.12::el9
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-11 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-10 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-4 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-9 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-12 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-18 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-7 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat cert-manager operator for Red Hat OpenShift 1.16 Unaffected: v1.16.5-1760515757 , < * (rpm)
        cpe:/a:redhat:cert_manager:1.16::el9
    Create a notification for this product.
    Red Hat OpenShift Compliance Operator 1 Unaffected: 1.8.0 , < * (rpm)
        cpe:/a:redhat:openshift_compliance_operator:1::el9
    Create a notification for this product.
    Red Hat OpenShift File Integrity Operator - FIO 1 Unaffected: v1.3 , < * (rpm)
        cpe:/a:redhat:openshift_file_integrity_operator:1::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 2.0.1-1754478727 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 2.15.3-0.1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1.5.5-1754504343 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559657 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559845 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559691 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559660 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559663 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754569861 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559846 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559651 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Siemens RUGGEDCOM ROX MX5000 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX MX5000RE Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1400 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1500 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1501 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1510 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1511 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1512 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1524 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1536 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX5000 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens SIMATIC CN 4100 Affected: 0 , < V5.0 (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 TM MFP - GNU/Linux subsystem Affected: 0 , < * (custom)
    Create a notification for this product.
    Siemens SIPLUS S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Date Public
    2025-07-10 00:00
    Credits
    Red Hat would like to thank Sergei Glazunov (Google Project Zero) for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-7425",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-07-10T15:21:27.766014Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-07-10T15:21:30.858Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2025-11-04T21:14:55.508Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "https://lists.debian.org/debian-lts-announce/2025/09/msg00035.html"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Aug/0"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/37"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/35"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/32"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/30"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2025/07/11/2"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX MX5000",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX MX5000RE",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1400",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1500",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1501",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1510",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1511",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1512",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1524",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1536",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX5000",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC CN 4100",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V5.0",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 TM MFP - GNU/Linux subsystem",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T12:02:33.327Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-265688.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-577017.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-032379.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://gitlab.gnome.org/GNOME/libxml2/",
              "defaultStatus": "unaffected",
              "packageName": "libxml2",
              "product": "libxml2",
              "vendor": "GNOME",
              "versions": [
                {
                  "lessThan": "2.15.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.12.5-8.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libxslt",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.39-8.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.1-6.el7_9.12",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-21.el8_10.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-21.el8_10.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.2::appstream",
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-9.el8_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.4::appstream",
                "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-9.el8_4.7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.4::appstream",
                "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-9.el8_4.7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-13.el8_6.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-13.el8_6.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-13.el8_6.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-16.el8_8.10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-16.el8_8.10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-11.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-11.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-1.el9_0.6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-3.el9_2.8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-11.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202509030110-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202509030117-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202508270040-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202508192014-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202508261955-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202508141510-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202508261658-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202508271124-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:webterminal:1.11::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "web-terminal/web-terminal-rhel9-operator",
              "product": "Red Hat Web Terminal 1.11 on RHEL 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.11-19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:webterminal:1.11::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "web-terminal/web-terminal-tooling-rhel9",
              "product": "Red Hat Web Terminal 1.11 on RHEL 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.11-8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:webterminal:1.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "web-terminal/web-terminal-tooling-rhel9",
              "product": "Red Hat Web Terminal 1.12 on RHEL 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.12-4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-data-index-ephemeral-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-data-index-postgresql-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-db-migrator-tool-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-jobs-service-ephemeral-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-jobs-service-postgresql-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-management-console-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-operator-bundle",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-12",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-rhel8-operator",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-18",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-swf-builder-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-swf-devmode-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:cert_manager:1.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cert-manager/jetstack-cert-manager-rhel9",
              "product": "cert-manager operator for Red Hat OpenShift 1.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "v1.16.5-1760515757",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_compliance_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-compliance-must-gather-rhel8",
              "product": "OpenShift Compliance Operator 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.8.0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_compliance_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-compliance-openscap-rhel8",
              "product": "OpenShift Compliance Operator 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.8.0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_compliance_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-compliance-rhel8-operator",
              "product": "OpenShift Compliance Operator 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.8.0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_file_integrity_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-file-integrity-rhel8-operator",
              "product": "OpenShift File Integrity Operator - FIO 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "v1.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.0.1-1754478727",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.15.3-0.1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.5.5-1754504343",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-agent-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559657",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-all-in-one-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559845",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-collector-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559691",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-es-index-cleaner-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559660",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-es-rollover-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559663",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-ingester-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559657",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-operator-bundle",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754569861",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-query-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559846",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-rhel8-operator",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559651",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libxslt",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Sergei Glazunov (Google Project Zero) for reporting this issue."
            }
          ],
          "datePublic": "2025-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T20:46:23.255Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHBA-2025:12345",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:12345"
            },
            {
              "name": "RHSA-2025:12447",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:12447"
            },
            {
              "name": "RHSA-2025:12450",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:12450"
            },
            {
              "name": "RHSA-2025:13267",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13267"
            },
            {
              "name": "RHSA-2025:13308",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13308"
            },
            {
              "name": "RHSA-2025:13309",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13309"
            },
            {
              "name": "RHSA-2025:13310",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13310"
            },
            {
              "name": "RHSA-2025:13311",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13311"
            },
            {
              "name": "RHSA-2025:13312",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13312"
            },
            {
              "name": "RHSA-2025:13313",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13313"
            },
            {
              "name": "RHSA-2025:13314",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13314"
            },
            {
              "name": "RHSA-2025:13335",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13335"
            },
            {
              "name": "RHSA-2025:13464",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13464"
            },
            {
              "name": "RHSA-2025:13622",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13622"
            },
            {
              "name": "RHSA-2025:14059",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14059"
            },
            {
              "name": "RHSA-2025:14396",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14396"
            },
            {
              "name": "RHSA-2025:14818",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14818"
            },
            {
              "name": "RHSA-2025:14819",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14819"
            },
            {
              "name": "RHSA-2025:14853",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14853"
            },
            {
              "name": "RHSA-2025:14858",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14858"
            },
            {
              "name": "RHSA-2025:15308",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15308"
            },
            {
              "name": "RHSA-2025:15672",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15672"
            },
            {
              "name": "RHSA-2025:15827",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15827"
            },
            {
              "name": "RHSA-2025:15828",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15828"
            },
            {
              "name": "RHSA-2025:18219",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18219"
            },
            {
              "name": "RHSA-2025:21885",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21885"
            },
            {
              "name": "RHSA-2025:21913",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21913"
            },
            {
              "name": "RHSA-2026:0934",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0934"
            },
            {
              "name": "RHSA-2026:11503",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:11503"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-7425"
            },
            {
              "name": "RHBZ#2379274",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
            },
            {
              "url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-07-10T09:37:28.172Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-07-10T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libxslt: libxml2: heap use-after-free in libxslt caused by atype corruption in xmlattrptr",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-416: Use After Free"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-7425",
        "datePublished": "2025-07-10T13:53:37.295Z",
        "dateReserved": "2025-07-10T08:44:06.287Z",
        "dateUpdated": "2026-06-29T20:46:23.255Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-5987 (GCVE-0-2025-5987)

    Vulnerability from nvd – Published: 2025-07-07 14:24 – Updated: 2026-06-30 10:40
    VLAI
    Title
    Libssh: invalid return code for chacha20 poly1305 with openssl backend
    Summary
    A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resulting in libssh not properly detecting the error returned by the OpenSSL library. This issue can lead to undefined behavior, including compromised data confidentiality and integrity or crashes.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-393 - Return of Wrong Status Code
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:23483 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23484 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0427 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0428 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0430 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0431 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0702 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0978 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0980 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0985 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0996 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1539 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1541 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3415 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-5987 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2376219 issue-trackingx_refsource_REDHAT
    https://www.libssh.org/security/advisories/CVE-20…
    Impacted products
    Vendor Product Version
    Affected: 0.10.0 , < 0.11.2 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:0.11.1-5.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:0.11.1-4.el10_0.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:0.10.4-17.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:0.10.4-9.el9_2.2 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:0.10.4-13.el9_4.2 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:0.10.4-15.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202602240113-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202601191325-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202601271320-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202601160124-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202601120213-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202601202224-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202601260820-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202601211057-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8     cpe:/o:redhat:enterprise_linux:8
    Create a notification for this product.
    Date Public
    2025-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-5987",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-22T04:55:55.619672Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T18:27:55.575Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.libssh.org/",
              "defaultStatus": "unaffected",
              "packageName": "libssh",
              "versions": [
                {
                  "lessThan": "0.11.2",
                  "status": "affected",
                  "version": "0.10.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.1-5.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.1-4.el10_0.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-17.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-17.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-9.el9_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-13.el9_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-15.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202602240113-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202601191325-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202601271320-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202601160124-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202601120213-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202601202224-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202601260820-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202601211057-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libssh2",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unknown",
              "packageName": "libssh2",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8"
              ],
              "defaultStatus": "unaffected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat"
            }
          ],
          "datePublic": "2025-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resulting in libssh not properly detecting the error returned by the OpenSSL library. This issue can lead to undefined behavior, including compromised data confidentiality and integrity or crashes."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-393",
                  "description": "Return of Wrong Status Code",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T10:40:14.322Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:23483",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23483"
            },
            {
              "name": "RHSA-2025:23484",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23484"
            },
            {
              "name": "RHSA-2026:0427",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0427"
            },
            {
              "name": "RHSA-2026:0428",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0428"
            },
            {
              "name": "RHSA-2026:0430",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0430"
            },
            {
              "name": "RHSA-2026:0431",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0431"
            },
            {
              "name": "RHSA-2026:0702",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0702"
            },
            {
              "name": "RHSA-2026:0978",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0978"
            },
            {
              "name": "RHSA-2026:0980",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0980"
            },
            {
              "name": "RHSA-2026:0985",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0985"
            },
            {
              "name": "RHSA-2026:0996",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0996"
            },
            {
              "name": "RHSA-2026:1539",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1539"
            },
            {
              "name": "RHSA-2026:1541",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1541"
            },
            {
              "name": "RHSA-2026:3415",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3415"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-5987"
            },
            {
              "name": "RHBZ#2376219",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2376219"
            },
            {
              "url": "https://www.libssh.org/security/advisories/CVE-2025-5987.txt"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-07-03T21:55:26.394Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-04-26T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libssh: invalid return code for chacha20 poly1305 with openssl backend",
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-393: Return of Wrong Status Code"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-5987",
        "datePublished": "2025-07-07T14:24:12.576Z",
        "dateReserved": "2025-06-10T21:55:45.552Z",
        "dateUpdated": "2026-06-30T10:40:14.322Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-6032 (GCVE-0-2025-6032)

    Vulnerability from nvd – Published: 2025-06-24 13:50 – Updated: 2026-06-30 10:40
    VLAI
    Title
    Podman: podman missing tls verification
    Summary
    A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-295 - Improper Certificate Validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    Affected: 4.8.0 , < 5.5.2 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 6:5.4.0-12.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020250625105344.afee755d , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 5:5.4.0-12.el9_6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 4:4.9.4-18.el9_4.2 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:4.9.4-14.rhaos4.16.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202507222002-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 5:5.2.2-8.rhaos4.17.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el8
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202507132309-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202507221927-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 5:5.2.2-9.rhaos4.18.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202507152218-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 5:5.4.0-6.rhaos4.19.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202509251656-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4     cpe:/a:redhat:openshift:4
    Create a notification for this product.
    Date Public
    2025-06-24 00:00
    Credits
    This issue was discovered by Paul Holzinger (Red Hat Inc.).
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-6032",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-24T14:11:17.749372Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-24T14:12:10.372Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/containers/podman/",
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "versions": [
                {
                  "lessThan": "5.5.2",
                  "status": "affected",
                  "version": "4.8.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.4.0-12.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020250625105344.afee755d",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-12.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-18.el9_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-14.rhaos4.16.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202507222002-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el8",
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.2.2-8.rhaos4.17.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202507132309-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202507221927-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.2.2-9.rhaos4.18.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202507152218-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-6.rhaos4.19.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202509251656-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "This issue was discovered by Paul Holzinger (Red Hat Inc.)."
            }
          ],
          "datePublic": "2025-06-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "Improper Certificate Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T10:40:27.442Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:10295",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:10295"
            },
            {
              "name": "RHSA-2025:10549",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:10549"
            },
            {
              "name": "RHSA-2025:10550",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:10550"
            },
            {
              "name": "RHSA-2025:10551",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:10551"
            },
            {
              "name": "RHSA-2025:10668",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:10668"
            },
            {
              "name": "RHSA-2025:11359",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:11359"
            },
            {
              "name": "RHSA-2025:11363",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:11363"
            },
            {
              "name": "RHSA-2025:11677",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:11677"
            },
            {
              "name": "RHSA-2025:11681",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:11681"
            },
            {
              "name": "RHSA-2025:15397",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15397"
            },
            {
              "name": "RHSA-2025:9726",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:9726"
            },
            {
              "name": "RHSA-2025:9751",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:9751"
            },
            {
              "name": "RHSA-2025:9766",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:9766"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-6032"
            },
            {
              "name": "RHBZ#2372501",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372501"
            },
            {
              "url": "https://github.com/containers/podman/commit/726b506acc8a00d99f1a3a1357ecf619a1f798c3"
            },
            {
              "url": "https://github.com/containers/podman/security/advisories/GHSA-65gg-3w2w-hr4h"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-06-12T15:14:34.557Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-06-24T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Podman: podman missing tls verification",
          "workarounds": [
            {
              "lang": "en",
              "value": "Download the VM image manually with another tool that verifies the TLS certificate and then pass the local image as a file path to podman, for example:\n\n# podman machine init --image \u003clocal-image-path\u003e"
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-295: Improper Certificate Validation"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-6032",
        "datePublished": "2025-06-24T13:50:47.955Z",
        "dateReserved": "2025-06-12T15:21:33.840Z",
        "dateUpdated": "2026-06-30T10:40:27.442Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-5318 (GCVE-0-2025-5318)

    Vulnerability from nvd – Published: 2025-06-24 14:10 – Updated: 2026-06-30 10:40
    VLAI
    Title
    Libssh: out-of-bounds read in sftp_handle()
    Summary
    A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:18231 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18275 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18286 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19012 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19098 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19101 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19295 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19300 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19313 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19400 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19401 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19470 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19472 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19807 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19864 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20943 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21013 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21329 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21829 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22275 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23078 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23079 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23080 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0326 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1541 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3461 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3462 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-5318 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2369131 issue-trackingx_refsource_REDHAT
    https://www.libssh.org/security/advisories/CVE-20…
    Impacted products
    Vendor Product Version
    Affected: 0 , < 0.11.2 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:0.11.1-4.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:0.11.1-4.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:0.9.6-15.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:0.9.0-4.el8_2.1 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.2::appstream
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:0.9.4-2.el8_4.1 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.4::appstream
        cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:0.9.4-2.el8_4.1 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.4::appstream
        cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:0.9.6-4.el8_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:0.9.6-4.el8_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:0.9.6-4.el8_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:0.9.6-13.el8_8.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:0.9.6-13.el8_8.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:0.10.4-15.el9_6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:0.10.4-15.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:0.9.6-3.el9_0.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:0.10.4-9.el9_2.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:0.10.4-13.el9_4.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202511191939-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202511261311-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202511122212-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202601271320-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202601071926-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202510282022-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202511041748-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202510281054-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202510290321-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 3.2.2-1765379088 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 3.2.2-1765379049 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 3.2.2-1764871796 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1772160593 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1772160625 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.7.1 Unaffected: rhosdt-3.7-1762254546 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.7::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.7.1 Unaffected: rhosdt-3.7-1762254552 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.7::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.7.1 Unaffected: rhosdt-3.7-1762255881 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.7::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.7.1 Unaffected: rhosdt-3.7-1762254530 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.7::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.7.1 Unaffected: rhosdt-3.7-1762254519 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.7::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.7.1 Unaffected: rhosdt-3.7-1762254545 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.7::el8
    Create a notification for this product.
    Date Public
    2025-06-24 00:00
    Credits
    Red Hat would like to thank Ronald Crane for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-5318",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-18T20:41:38.314148Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-18T20:41:54.510Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.libssh.org/",
              "defaultStatus": "unaffected",
              "packageName": "libssh",
              "versions": [
                {
                  "lessThan": "0.11.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.1-4.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.1-4.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-15.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-15.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.2::appstream",
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.0-4.el8_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.4::appstream",
                "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.4-2.el8_4.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.4::appstream",
                "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.4-2.el8_4.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-13.el8_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-13.el8_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-15.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-15.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-15.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-15.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-3.el9_0.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-9.el9_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-13.el9_4.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202511191939-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202511261311-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202511122212-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202601271320-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202601071926-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202510282022-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202511041748-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202510281054-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202510290321-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.2.2-1765379088",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.2.2-1765379049",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.2.2-1764871796",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1772160593",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1772160625",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.7::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/tempo-gateway-opa-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.7.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.7-1762254546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.7::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/tempo-gateway-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.7.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.7-1762254552",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.7::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/tempo-jaeger-query-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.7.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.7-1762255881",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.7::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/tempo-query-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.7.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.7-1762254530",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.7::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/tempo-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.7.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.7-1762254519",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.7::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/tempo-rhel8-operator",
              "product": "Red Hat OpenShift distributed tracing 3.7.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.7-1762254545",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Ronald Crane for reporting this issue."
            }
          ],
          "datePublic": "2025-06-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T10:40:26.453Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:18231",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18231"
            },
            {
              "name": "RHSA-2025:18275",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18275"
            },
            {
              "name": "RHSA-2025:18286",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18286"
            },
            {
              "name": "RHSA-2025:19012",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19012"
            },
            {
              "name": "RHSA-2025:19098",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19098"
            },
            {
              "name": "RHSA-2025:19101",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19101"
            },
            {
              "name": "RHSA-2025:19295",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19295"
            },
            {
              "name": "RHSA-2025:19300",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19300"
            },
            {
              "name": "RHSA-2025:19313",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19313"
            },
            {
              "name": "RHSA-2025:19400",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19400"
            },
            {
              "name": "RHSA-2025:19401",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19401"
            },
            {
              "name": "RHSA-2025:19470",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19470"
            },
            {
              "name": "RHSA-2025:19472",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19472"
            },
            {
              "name": "RHSA-2025:19807",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19807"
            },
            {
              "name": "RHSA-2025:19864",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19864"
            },
            {
              "name": "RHSA-2025:20943",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20943"
            },
            {
              "name": "RHSA-2025:21013",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21013"
            },
            {
              "name": "RHSA-2025:21329",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21329"
            },
            {
              "name": "RHSA-2025:21829",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21829"
            },
            {
              "name": "RHSA-2025:22275",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22275"
            },
            {
              "name": "RHSA-2025:23078",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23078"
            },
            {
              "name": "RHSA-2025:23079",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23079"
            },
            {
              "name": "RHSA-2025:23080",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23080"
            },
            {
              "name": "RHSA-2026:0326",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0326"
            },
            {
              "name": "RHSA-2026:1541",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1541"
            },
            {
              "name": "RHSA-2026:3461",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3461"
            },
            {
              "name": "RHSA-2026:3462",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3462"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-5318"
            },
            {
              "name": "RHBZ#2369131",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369131"
            },
            {
              "url": "https://www.libssh.org/security/advisories/CVE-2025-5318.txt"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-05-29T06:48:59.169Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-06-24T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libssh: out-of-bounds read in sftp_handle()",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-125: Out-of-bounds Read"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-5318",
        "datePublished": "2025-06-24T14:10:07.188Z",
        "dateReserved": "2025-05-29T07:01:42.703Z",
        "dateUpdated": "2026-06-30T10:40:26.453Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-1784 (GCVE-0-2026-1784)

    Vulnerability from cvelistv5 – Published: 2026-06-02 07:22 – Updated: 2026-07-01 13:29
    VLAI
    Title
    Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection
    Summary
    The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-15 - External Control of System or Configuration Setting
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:23241 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:23246 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25045 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25182 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25194 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:26543 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:28893 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-1784 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2436075 issue-trackingx_refsource_REDHAT
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1781123014 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 1781870101 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 1780962617 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 1780988280 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 1780043338 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1780990977 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.21 Unaffected: 1780444348 , < * (rpm)
        cpe:/a:redhat:openshift:4.21::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20     cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.21     cpe:/a:redhat:openshift:4.21::el9
    Create a notification for this product.
    Date Public
    2026-06-02 07:12
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-1784",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T12:20:08.030702Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T12:20:25.547Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.20::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.20",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.21::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.21",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-06-02T07:12:31.172Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "CHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-15",
                    "description": "External Control of System or Configuration Setting",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:07:06.081Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-1784"
              },
              {
                "name": "RHBZ#2436075",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436075"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-1784.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:26543"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25045"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25182"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23246"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25194"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23241"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:26543: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25045: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25182: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23246: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25194: Red Hat OpenShift Container Platform 4.20"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23241: Red Hat OpenShift Container Platform 4.21"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-02-02T21:05:20.978Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-06-02T07:12:31.172Z",
                "value": "Made public."
              }
            ],
            "title": "ose-cluster-ingress-operator: Remote Code Execution Through HAProxy Configuration Injection",
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-operator",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1781123014",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-operator",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1781870101",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780962617",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780988280",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780043338",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780990977",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.21::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
              "product": "Red Hat OpenShift Container Platform 4.21",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780444348",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "datePublic": "2026-06-02T07:12:31.172Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-15",
                  "description": "External Control of System or Configuration Setting",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-01T13:29:27.302Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:23241",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23241"
            },
            {
              "name": "RHSA-2026:23246",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23246"
            },
            {
              "name": "RHSA-2026:25045",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25045"
            },
            {
              "name": "RHSA-2026:25182",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25182"
            },
            {
              "name": "RHSA-2026:25194",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25194"
            },
            {
              "name": "RHSA-2026:26543",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:26543"
            },
            {
              "name": "RHSA-2026:28893",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:28893"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-1784"
            },
            {
              "name": "RHBZ#2436075",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436075"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-02-02T21:05:20.978Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-06-02T07:12:31.172Z",
              "value": "Made public."
            }
          ],
          "title": "Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection",
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-15: External Control of System or Configuration Setting"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-1784",
        "datePublished": "2026-06-02T07:22:26.461Z",
        "dateReserved": "2026-02-02T21:17:24.893Z",
        "dateUpdated": "2026-07-01T13:29:27.302Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4878 (GCVE-0-2026-4878)

    Vulnerability from cvelistv5 – Published: 2026-04-09 14:49 – Updated: 2026-07-01 19:07
    VLAI
    Title
    Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()
    Summary
    A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:12423 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12441 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:13285 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14162 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14937 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19130 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19346 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19456 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19458 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:20595 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21254 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21275 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:22634 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:22957 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:23233 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:23245 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:24346 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25044 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25181 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:26542 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:27998 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:28887 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:29197 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30078 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30088 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:30089 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7473 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-4878 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2447554
    https://bugzilla.redhat.com/show_bug.cgi?id=2451615 issue-trackingx_refsource_REDHAT
    http://www.openwall.com/lists/oss-security/2026/04/07/4
    http://www.openwall.com/lists/oss-security/2026/0…
    http://www.openwall.com/lists/oss-security/2026/04/08/9
    http://www.openwall.com/lists/oss-security/2026/04/09/5
    http://www.openwall.com/lists/oss-security/2026/04/09/6
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.69-7.el10_1.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.69-7.el10_2.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:2.69-7.el10_0.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.48-6.el8_10.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.48-4.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On Unaffected: 0:2.48-4.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.48-5.el8_8.1 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.48-5.el8_8.1 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.48-10.el9_7.1 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.48-10.el9_8.1 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.48-9.el9_2.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.48-9.el9_4.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:2.48-9.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202606160406-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202606231112-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202606030318-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202606051757-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202606051320-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202606031700-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Cost Management 4 Unaffected: 1780946239 , < * (rpm)
        cpe:/a:redhat:cost_management:4::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782352950 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782352919 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782353093 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1782352847 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778101579 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778156756 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1782159791 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1782166952 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 2.78-1.1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1780420428 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3 Unaffected: 1778056267 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3 Unaffected: 1778056233 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3 Unaffected: 1778056245 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798159 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798164 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798165 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1779798222 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15     cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.2)     cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.6)     cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 9)     cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 8)     cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v.8.6)     cpe:/o:redhat:rhel_aus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)     cpe:/o:redhat:rhel_eus_long_life:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.8.8)     cpe:/o:redhat:rhel_e4s:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS TUS (v.8.8)     cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.2)     cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.4)     cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.6)     cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 9)     cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Cost Management 4     cpe:/a:redhat:cost_management:4::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2     cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3     cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2     cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images     cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5     cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.9.3     cpe:/a:redhat:openshift_distributed_tracing:3.9::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5     cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Date Public
    2026-04-06 00:00
    Credits
    Red Hat would like to thank Ali Raza for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2026-04-09T15:36:22.355Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/07/4"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/07/14"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/08/9"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/09/5"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2026/04/09/6"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4878",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-09T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-10T03:56:06.647Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.15::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.15",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1",
                  "cpe:/o:redhat:enterprise_linux:10.2"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.6::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:9::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1",
                  "cpe:/o:redhat:enterprise_linux:10.2"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_tus:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:9::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:cost_management:4::el9"
                ],
                "defaultStatus": "affected",
                "product": "Cost Management 4",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.3::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:discovery:2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Discovery 2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:hummingbird:1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Hardened Images",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:insights_proxy:1.5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Insights proxy 1.5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift distributed tracing 3.9.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhui:5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Update Infrastructure 5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:6"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 6",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:7"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 7",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-04-06T00:00:00.000Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-367",
                    "description": "Time-of-check Time-of-use (TOCTOU) Race Condition",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:10:35.145Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-4878"
              },
              {
                "name": "RHBZ#2451615",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4878.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:26542"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23233"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25044"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25181"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:23245"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19456"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12423"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19130"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:21254"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:20595"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19458"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12441"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19346"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:13285"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:24346"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:22957"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:27998"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25096"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30078"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30089"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30088"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:30087"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14937"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:29197"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7473"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:22634"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14162"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:21275"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:26542: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23233: Red Hat OpenShift Container Platform 4.15"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25044: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25181: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:23245: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19456: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux BaseOS EUS (v. 10.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12423: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19130: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:21254: Red Hat Enterprise Linux AppStream E4S (v.9.2), Red Hat Enterprise Linux BaseOS E4S (v.9.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:20595: Red Hat Enterprise Linux AppStream EUS (v.9.4), Red Hat Enterprise Linux BaseOS EUS (v.9.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19458: Red Hat Enterprise Linux AppStream EUS (v.9.6), Red Hat Enterprise Linux BaseOS EUS (v.9.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12441: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19346: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:13285: Red Hat Enterprise Linux BaseOS (v. 8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:24346: Red Hat Enterprise Linux BaseOS AUS (v.8.6), Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:22957: Red Hat Enterprise Linux BaseOS E4S (v.8.8), Red Hat Enterprise Linux BaseOS TUS (v.8.8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:27998: Cost Management 4"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25096: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30078: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30089: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30088: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:30087: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14937: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:29197: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7473: Red Hat Hardened Images"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:22634: Red Hat Insights proxy 1.5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14162: Red Hat OpenShift distributed tracing 3.9.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:21275: Red Hat Update Infrastructure 5"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-03-26T06:56:21.213Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-04-06T00:00:00.000Z",
                "value": "Made public."
              }
            ],
            "title": "libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()",
            "workarounds": [
              {
                "lang": "en",
                "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
              }
            ],
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.69-7.el10_1.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.2"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.69-7.el10_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.69-7.el10_0.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-6.el8_10.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-4.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-5.el8_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-5.el8_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-10.el9_8.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-9.el9_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-9.el9_4.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.48-9.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202606160406-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202606231112-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202606030318-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202606051757-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202606051320-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202606031700-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:cost_management:4::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "costmanagement/costmanagement-metrics-rhel9-operator",
              "product": "Cost Management 4",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780946239",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782352950",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782352919",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782353093",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782352847",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778101579",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778156756",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782159791",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1782166952",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libcap-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.78-1.1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780420428",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/opentelemetry-collector-rhel9",
              "product": "Red Hat OpenShift distributed tracing 3.9.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778056267",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/opentelemetry-rhel9-operator",
              "product": "Red Hat OpenShift distributed tracing 3.9.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778056233",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/opentelemetry-target-allocator-rhel9",
              "product": "Red Hat OpenShift distributed tracing 3.9.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778056245",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798159",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798164",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798165",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779798222",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "compat-libcap1",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unknown",
              "packageName": "compat-libcap1",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unknown",
              "packageName": "libcap",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Ali Raza for reporting this issue."
            }
          ],
          "datePublic": "2026-04-06T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, capabilities can be injected into or stripped from unintended executables, leading to privilege escalation."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 6.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "Time-of-check Time-of-use (TOCTOU) Race Condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-01T19:07:40.191Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:12423",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12423"
            },
            {
              "name": "RHSA-2026:12441",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12441"
            },
            {
              "name": "RHSA-2026:13285",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:13285"
            },
            {
              "name": "RHSA-2026:14162",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14162"
            },
            {
              "name": "RHSA-2026:14937",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14937"
            },
            {
              "name": "RHSA-2026:19130",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19130"
            },
            {
              "name": "RHSA-2026:19346",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19346"
            },
            {
              "name": "RHSA-2026:19456",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19456"
            },
            {
              "name": "RHSA-2026:19458",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19458"
            },
            {
              "name": "RHSA-2026:20595",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:20595"
            },
            {
              "name": "RHSA-2026:21254",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21254"
            },
            {
              "name": "RHSA-2026:21275",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21275"
            },
            {
              "name": "RHSA-2026:22634",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:22634"
            },
            {
              "name": "RHSA-2026:22957",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:22957"
            },
            {
              "name": "RHSA-2026:23233",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23233"
            },
            {
              "name": "RHSA-2026:23245",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:23245"
            },
            {
              "name": "RHSA-2026:24346",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:24346"
            },
            {
              "name": "RHSA-2026:25044",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25044"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:25181",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25181"
            },
            {
              "name": "RHSA-2026:26542",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:26542"
            },
            {
              "name": "RHSA-2026:27998",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:27998"
            },
            {
              "name": "RHSA-2026:28887",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:28887"
            },
            {
              "name": "RHSA-2026:29197",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:29197"
            },
            {
              "name": "RHSA-2026:30078",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30078"
            },
            {
              "name": "RHSA-2026:30087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30087"
            },
            {
              "name": "RHSA-2026:30088",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30088"
            },
            {
              "name": "RHSA-2026:30089",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:30089"
            },
            {
              "name": "RHSA-2026:7473",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7473"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-4878"
            },
            {
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447554"
            },
            {
              "name": "RHBZ#2451615",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-26T06:56:21.213Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-04-06T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-4878",
        "datePublished": "2026-04-09T14:49:02.942Z",
        "dateReserved": "2026-03-26T06:32:41.308Z",
        "dateUpdated": "2026-07-01T19:07:40.191Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-5121 (GCVE-0-2026-5121)

    Vulnerability from cvelistv5 – Published: 2026-03-30 07:47 – Updated: 2026-06-10 17:34
    VLAI
    Title
    Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing
    Summary
    A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10065 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:11768 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12071 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12274 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:13812 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14937 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16008 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16009 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16030 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16174 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19725 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:20040 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21690 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8510 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8517 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8521 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8534 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8864 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8866 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8867 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8873 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8908 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8944 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9026 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9592 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9832 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-5121 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2452945 issue-trackingx_refsource_REDHAT
    https://github.com/advisories/GHSA-2vwv-vqpv-v8vc
    https://github.com/libarchive/libarchive/pull/2934
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:3.1.2-14.el7_9.2 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:3.3.3-7.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:3.3.2-8.el8_2.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:3.5.3-9.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:3.5.3-2.el9_0.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:3.5.3-5.el9_2.2 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:3.5.3-5.el9_4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:3.5.3-7.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202604281506-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202605271328-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202604240015-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202605201155-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325677 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325711 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325710 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-3.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325709 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325708 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223654 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223651 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244559 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244531 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778274666 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244546 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778156756 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 3.8.7-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1776868961 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868774 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868744 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868772 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868842 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459441 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777454300 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459504 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10     cpe:/o:redhat:enterprise_linux:10
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Date Public
    2026-03-30 07:44
    Credits
    Red Hat would like to thank Elhanan Haenel for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-5121",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T03:55:34.402717Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-190",
                    "description": "CWE-190 Integer Overflow or Wraparound",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T13:52:02.886Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.2-14.el7_9.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-7.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.2-8.el8_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-2.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202604281506-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202605271328-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202604240015-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202605201155-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-monitoring-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325677",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325711",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-controller-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325710",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-dashbuilder-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-3.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-kieserver-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325709",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-process-migration-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-smartrouter-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325708",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223654",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223651",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244559",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244531",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778274666",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778156756",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.8.7-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868961",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868744",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868772",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868842",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-kubernetes-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459441",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777454300",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459504",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Elhanan Haenel for reporting this issue."
            }
          ],
          "datePublic": "2026-03-30T07:44:15.222Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-190",
                  "description": "Integer Overflow or Wraparound",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-10T17:34:45.945Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10065",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10065"
            },
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:11768",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:11768"
            },
            {
              "name": "RHSA-2026:12071",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12071"
            },
            {
              "name": "RHSA-2026:12274",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12274"
            },
            {
              "name": "RHSA-2026:13812",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:13812"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:14937",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14937"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:16008",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16008"
            },
            {
              "name": "RHSA-2026:16009",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16009"
            },
            {
              "name": "RHSA-2026:16030",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16030"
            },
            {
              "name": "RHSA-2026:16174",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16174"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:19724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19724"
            },
            {
              "name": "RHSA-2026:19725",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19725"
            },
            {
              "name": "RHSA-2026:20040",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:20040"
            },
            {
              "name": "RHSA-2026:21690",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21690"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:8510",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8510"
            },
            {
              "name": "RHSA-2026:8517",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8517"
            },
            {
              "name": "RHSA-2026:8521",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8521"
            },
            {
              "name": "RHSA-2026:8534",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8534"
            },
            {
              "name": "RHSA-2026:8864",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8864"
            },
            {
              "name": "RHSA-2026:8866",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8866"
            },
            {
              "name": "RHSA-2026:8867",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8867"
            },
            {
              "name": "RHSA-2026:8873",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8873"
            },
            {
              "name": "RHSA-2026:8908",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8908"
            },
            {
              "name": "RHSA-2026:8944",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8944"
            },
            {
              "name": "RHSA-2026:9026",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9026"
            },
            {
              "name": "RHSA-2026:9592",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9592"
            },
            {
              "name": "RHSA-2026:9832",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9832"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-5121"
            },
            {
              "name": "RHBZ#2452945",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452945"
            },
            {
              "url": "https://github.com/advisories/GHSA-2vwv-vqpv-v8vc"
            },
            {
              "url": "https://github.com/libarchive/libarchive/pull/2934"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-30T07:40:25.358Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-30T07:44:15.222Z",
              "value": "Made public."
            }
          ],
          "title": "Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing",
          "workarounds": [
            {
              "lang": "en",
              "value": "To mitigate this issue, avoid processing untrusted ISO9660 images with applications that utilize `libarchive`. Users should only extract or read content from ISO images obtained from trusted sources."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-5121",
        "datePublished": "2026-03-30T07:47:28.562Z",
        "dateReserved": "2026-03-30T07:39:27.352Z",
        "dateUpdated": "2026-06-10T17:34:45.945Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4424 (GCVE-0-2026-4424)

    Vulnerability from cvelistv5 – Published: 2026-03-19 13:50 – Updated: 2026-06-30 12:10
    VLAI
    Title
    Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing
    Summary
    A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10065 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:11768 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12071 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:12274 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:13812 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14937 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16008 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16009 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16030 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16174 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:19725 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:20040 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:21690 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8492 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8510 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8517 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8521 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8534 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8864 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8865 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8866 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8867 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8873 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8908 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8944 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9026 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9592 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9832 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-4424 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2449006 issue-trackingx_refsource_REDHAT
    https://github.com/libarchive/libarchive/pull/2898
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:3.7.7-8.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:3.7.7-5.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:3.1.2-14.el7_9.2 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:3.3.3-7.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:3.3.2-8.el8_2.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:3.3.3-1.el8_4.2 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:3.3.3-6.el8_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:3.3.3-5.el8_8.2 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:3.5.3-9.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:3.5.3-2.el9_0.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:3.5.3-5.el9_2.2 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:3.5.3-5.el9_4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:3.5.3-7.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202604281506-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202605271328-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202604240015-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202605201155-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325677 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325711 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325710 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-3.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325709 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325680 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat RHEL-8 based Middleware Containers Unaffected: 7.13.5-4.1777325708 , < * (rpm)
        cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223654 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1779223651 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244559 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244531 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778274666 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244546 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778101579 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1778156756 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 3.8.7-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1776868961 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868774 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868744 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868772 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868842 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459441 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777454300 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1777459504 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux Server (v. 7 ELS)     cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux Server Optional (v. 7 ELS)     cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12     cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Middleware Containers for OpenShift     cpe:/a:redhat:rhosemc:1.0::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14     cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15     cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17     cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.0)     cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.2)     cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.6)     cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 9)     cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 8)     cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v. 8.2)     cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v.8.4)     cpe:/o:redhat:rhel_aus:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)     cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS AUS (v.8.6)     cpe:/o:redhat:rhel_aus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.8.6)     cpe:/o:redhat:rhel_e4s:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS TUS (v.8.6)     cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.8.8)     cpe:/o:redhat:rhel_e4s:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS TUS (v.8.8)     cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.0)     cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.2)     cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.4)     cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.6)     cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 9)     cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux CRB (v. 8)     cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat CodeReady Linux Builder EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::crb
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2     cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3     cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2     cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images     cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5     cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5     cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Date Public
    2026-03-19 00:00
    Credits
    Red Hat would like to thank Elhanan Haenel for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4424",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-19T17:07:05.672445Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-27T14:51:58.850Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_els:7"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_els:7"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.12::el8"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.12",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhosemc:1.0::el8"
                ],
                "defaultStatus": "affected",
                "product": "Middleware Containers for OpenShift",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.14::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.14",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.15::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.15",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.17::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.17",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.0::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.6::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:9::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_aus:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_tus:8.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_tus:8.8::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.0::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:9::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:8::crb"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux CRB (v. 8)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::crb"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.3::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:discovery:2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Discovery 2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:hummingbird:1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Hardened Images",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:insights_proxy:1.5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Insights proxy 1.5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhui:5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Update Infrastructure 5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:6"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 6",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-03-19T00:00:00.000Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-125",
                    "description": "Out-of-bounds Read",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:10:41.750Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-4424"
              },
              {
                "name": "RHBZ#2449006",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4424.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8517"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12274"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:13812"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:21690"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:15087"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14773"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10097"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:17596"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:12071"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:20040"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8865"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8492"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8867"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8864"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8873"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8866"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8510"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8534"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8521"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9592"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8908"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9026"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25096"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19724"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:19725"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16008"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16030"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16009"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16174"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14937"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8944"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9832"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:11768"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10065"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:8517: Red Hat Enterprise Linux Server (v. 7 ELS), Red Hat Enterprise Linux Server Optional (v. 7 ELS)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12274: Red Hat OpenShift Container Platform 4.12"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:13812: Middleware Containers for OpenShift"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:21690: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:15087: Red Hat OpenShift Container Platform 4.14"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14773: Red Hat OpenShift Container Platform 4.15"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10097: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:17596: Red Hat OpenShift Container Platform 4.17"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:12071: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:20040: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8865: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux BaseOS EUS (v. 10.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8492: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8867: Red Hat Enterprise Linux AppStream E4S (v.9.0), Red Hat Enterprise Linux BaseOS E4S (v.9.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8864: Red Hat Enterprise Linux AppStream E4S (v.9.2), Red Hat Enterprise Linux BaseOS E4S (v.9.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8873: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4), Red Hat Enterprise Linux BaseOS EUS (v.9.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8866: Red Hat Enterprise Linux AppStream EUS (v.9.6), Red Hat Enterprise Linux BaseOS EUS (v.9.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8510: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8534: Red Hat Enterprise Linux BaseOS (v. 8), Red Hat Enterprise Linux CRB (v. 8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8521: Red Hat Enterprise Linux BaseOS AUS (v. 8.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9592: Red Hat Enterprise Linux BaseOS AUS (v.8.4), Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8908: Red Hat Enterprise Linux BaseOS AUS (v.8.6), Red Hat Enterprise Linux BaseOS E4S (v.8.6), Red Hat Enterprise Linux BaseOS TUS (v.8.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9026: Red Hat Enterprise Linux BaseOS E4S (v.8.8), Red Hat Enterprise Linux BaseOS TUS (v.8.8)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25096: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19724: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:19725: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16008: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16030: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16009: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16174: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14937: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8944: Red Hat Hardened Images"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9832: Red Hat Insights proxy 1.5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:11768: Red Hat Update Infrastructure 5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10065: Red Hat Update Infrastructure 5"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-03-19T12:22:21.740Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-03-19T00:00:00.000Z",
                "value": "Made public."
              }
            ],
            "title": "libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing",
            "workarounds": [
              {
                "lang": "en",
                "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
              }
            ],
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-8.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-5.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.2-14.el7_9.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-7.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.2-8.el8_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-1.el8_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-6.el8_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-5.el8_8.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-9.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-2.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202604281506-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202605271328-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202604240015-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202605201155-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-monitoring-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325677",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-businesscentral-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325711",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-controller-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325710",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-dashbuilder-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-3.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-kieserver-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325709",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-process-migration-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325680",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhosemc:1.0::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhpam-7/rhpam-smartrouter-rhel8",
              "product": "RHEL-8 based Middleware Containers",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7.13.5-4.1777325708",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223654",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1779223651",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244559",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244531",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778274666",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778101579",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778156756",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.8.7-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868961",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868744",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868772",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868842",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-kubernetes-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459441",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777454300",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-tp-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1777459504",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Elhanan Haenel for reporting this issue."
            }
          ],
          "datePublic": "2026-03-19T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-10T17:34:02.459Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10065",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10065"
            },
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:11768",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:11768"
            },
            {
              "name": "RHSA-2026:12071",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12071"
            },
            {
              "name": "RHSA-2026:12274",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:12274"
            },
            {
              "name": "RHSA-2026:13812",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:13812"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:14937",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14937"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:16008",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16008"
            },
            {
              "name": "RHSA-2026:16009",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16009"
            },
            {
              "name": "RHSA-2026:16030",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16030"
            },
            {
              "name": "RHSA-2026:16174",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16174"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:19724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19724"
            },
            {
              "name": "RHSA-2026:19725",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:19725"
            },
            {
              "name": "RHSA-2026:20040",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:20040"
            },
            {
              "name": "RHSA-2026:21690",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:21690"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:8492",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8492"
            },
            {
              "name": "RHSA-2026:8510",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8510"
            },
            {
              "name": "RHSA-2026:8517",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8517"
            },
            {
              "name": "RHSA-2026:8521",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8521"
            },
            {
              "name": "RHSA-2026:8534",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8534"
            },
            {
              "name": "RHSA-2026:8864",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8864"
            },
            {
              "name": "RHSA-2026:8865",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8865"
            },
            {
              "name": "RHSA-2026:8866",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8866"
            },
            {
              "name": "RHSA-2026:8867",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8867"
            },
            {
              "name": "RHSA-2026:8873",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8873"
            },
            {
              "name": "RHSA-2026:8908",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8908"
            },
            {
              "name": "RHSA-2026:8944",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8944"
            },
            {
              "name": "RHSA-2026:9026",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9026"
            },
            {
              "name": "RHSA-2026:9592",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9592"
            },
            {
              "name": "RHSA-2026:9832",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9832"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-4424"
            },
            {
              "name": "RHBZ#2449006",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
            },
            {
              "url": "https://github.com/libarchive/libarchive/pull/2898"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-19T12:22:21.740Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-19T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-125: Out-of-bounds Read"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-4424",
        "datePublished": "2026-03-19T13:50:27.294Z",
        "dateReserved": "2026-03-19T12:23:38.191Z",
        "dateUpdated": "2026-06-30T12:10:41.750Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4111 (GCVE-0-2026-4111)

    Vulnerability from cvelistv5 – Published: 2026-03-13 11:45 – Updated: 2026-06-30 12:09
    VLAI
    Title
    Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive
    Summary
    A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This condition results in an infinite loop that continuously consumes CPU resources. Because the archive passes checksum validation and appears structurally valid, affected applications cannot detect the issue before processing. This can allow attackers to cause persistent denial-of-service conditions in services that automatically process archives.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10065 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10081 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16008 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16009 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:16174 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:25096 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5063 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5080 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:6647 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7093 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7105 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7106 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7239 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7329 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7335 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8423 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8746 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8747 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8748 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8865 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8944 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:9832 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2026-4111 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2446453 issue-trackingx_refsource_REDHAT
    https://github.com/libarchive/libarchive/pull/2877
    https://security.access.redhat.com/data/csaf/v2/v… x_sadp-csaf-vex
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:3.7.7-5.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:3.7.7-5.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:3.5.3-7.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:3.5.3-2.el9_0.3 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:3.5.3-5.el9_2.1 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:3.5.3-4.el9_4.2 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:3.5.3-6.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202604080111-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202604140044-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202604211219-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1780681984 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2 Unaffected: 1775740563 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244559 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244531 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1778244546 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1775680192 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1775680262 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3 Unaffected: 1775749857 , < * (rpm)
        cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1775668717 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1775675922 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 3.8.7-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1776868961 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868774 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868744 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868772 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1776868842 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8     cpe:/o:redhat:enterprise_linux:8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13     cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14     cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15     cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16     cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17     cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18     cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19     cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.0)     cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream E4S (v.9.2)     cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream EUS (v.9.6)     cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux AppStream (v. 9)     cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v. 10.0)     cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 10)     cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.0)     cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS E4S (v.9.2)     cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.4)     cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS EUS (v.9.6)     cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux BaseOS (v. 9)     cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat CodeReady Linux Builder EUS (v.9.4)     cpe:/a:redhat:rhel_eus:9.4::crb
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.2     cpe:/a:redhat:ai_inference_server:3.2::el9
    Create a notification for this product.
    Red Hat Red Hat AI Inference Server 3.3     cpe:/a:redhat:ai_inference_server:3.3::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2     cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images     cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5     cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5     cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Date Public
    2026-03-11 00:00
    Credits
    Red Hat would like to thank Elhanan Haenel for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4111",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-13T13:36:13.170394Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-13T13:36:18.676Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.13::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.13",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.14::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.14",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.15::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.15",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.16::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.16",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.17::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.17",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.18::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.18",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:openshift:4.19::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat OpenShift Container Platform 4.19",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.0::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.6::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:enterprise_linux:9::appstream"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux AppStream (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux_eus:10.0"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v. 10.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:10.1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.0::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_e4s:9.2::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.4::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:rhel_eus:9.6::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS EUS (v.9.6)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:9::baseos"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhel_eus:9.4::crb"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:ai_inference_server:3.3::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat AI Inference Server 3.3",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:discovery:2::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Discovery 2",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:hummingbird:1"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Hardened Images",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:insights_proxy:1.5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Insights proxy 1.5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/a:redhat:rhui:5::el9"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Update Infrastructure 5",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:6"
                ],
                "defaultStatus": "affected",
                "product": "Red Hat Enterprise Linux 6",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:7"
                ],
                "defaultStatus": "unaffected",
                "product": "Red Hat Enterprise Linux 7",
                "vendor": "Red Hat"
              },
              {
                "cpes": [
                  "cpe:/o:redhat:enterprise_linux:8"
                ],
                "defaultStatus": "unaffected",
                "product": "Red Hat Enterprise Linux 8",
                "vendor": "Red Hat"
              }
            ],
            "datePublic": "2026-03-11T00:00:00.000Z",
            "descriptions": [
              {
                "lang": "en",
                "value": "A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This condition results in an infinite loop that continuously consumes CPU resources. Because the archive passes checksum validation and appears structurally valid, affected applications cannot detect the issue before processing. This can allow attackers to cause persistent denial-of-service conditions in services that automatically process archives."
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "namespace": "https://access.redhat.com/security/updates/classification/",
                    "value": "Important"
                  },
                  "type": "Red Hat severity rating"
                }
              },
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                },
                "format": "CVSS"
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-835",
                    "description": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T12:09:22.730Z",
              "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
              "shortName": "redhat-SADP"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/security/cve/CVE-2026-4111"
              },
              {
                "name": "RHBZ#2446453",
                "tags": [
                  "issue-tracking",
                  "x_refsource_REDHAT"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446453"
              },
              {
                "tags": [
                  "x_sadp-csaf-vex"
                ],
                "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4111.json"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7239"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:15087"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:14773"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10097"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:17596"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8423"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10081"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8865"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:5063"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7093"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:6647"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7106"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7105"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:5080"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:25096"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7335"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16008"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8748"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8746"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8747"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16009"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:16174"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:7329"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:8944"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:9832"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT"
                ],
                "url": "https://access.redhat.com/errata/RHSA-2026:10065"
              }
            ],
            "solutions": [
              {
                "lang": "en",
                "value": "RHSA-2026:7239: Red Hat OpenShift Container Platform 4.13"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:15087: Red Hat OpenShift Container Platform 4.14"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:14773: Red Hat OpenShift Container Platform 4.15"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10097: Red Hat OpenShift Container Platform 4.16"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:17596: Red Hat OpenShift Container Platform 4.17"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8423: Red Hat OpenShift Container Platform 4.18"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10081: Red Hat OpenShift Container Platform 4.19"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8865: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux BaseOS EUS (v. 10.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:5063: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7093: Red Hat Enterprise Linux AppStream E4S (v.9.0), Red Hat Enterprise Linux BaseOS E4S (v.9.0)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:6647: Red Hat Enterprise Linux AppStream E4S (v.9.2), Red Hat Enterprise Linux BaseOS E4S (v.9.2)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7106: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4), Red Hat Enterprise Linux BaseOS EUS (v.9.4)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7105: Red Hat Enterprise Linux AppStream EUS (v.9.6), Red Hat Enterprise Linux BaseOS EUS (v.9.6)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:5080: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:25096: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7335: Red Hat AI Inference Server 3.2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16008: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8748: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8746: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8747: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16009: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:16174: Red Hat AI Inference Server 3.3"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:7329: Red Hat Discovery 2"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:8944: Red Hat Hardened Images"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:9832: Red Hat Insights proxy 1.5"
              },
              {
                "lang": "en",
                "value": "RHSA-2026:10065: Red Hat Update Infrastructure 5"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2026-03-11T11:18:51.609Z",
                "value": "Reported to Red Hat."
              },
              {
                "lang": "en",
                "time": "2026-03-11T00:00:00.000Z",
                "value": "Made public."
              }
            ],
            "title": "libarchive: Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive",
            "workarounds": [
              {
                "lang": "en",
                "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
              }
            ],
            "x_adpType": "supplier",
            "x_generator": {
              "engine": "sadp-cli 1.0.0"
            }
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-5.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7.7-5.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-7.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-2.el9_0.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-5.el9_2.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-4.el9_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-6.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202604080111-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202604140044-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202604211219-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1780681984",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775740563",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244559",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244531",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-spyre-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1778244546",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775680192",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/vllm-rocm-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775680262",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ai_inference_server:3.3::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhaiis/model-opt-cuda-rhel9",
              "product": "Red Hat AI Inference Server 3.3",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775749857",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775668717",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1775675922",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libarchive-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.8.7-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868961",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868744",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868772",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1776868842",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unaffected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8"
              ],
              "defaultStatus": "unaffected",
              "packageName": "libarchive",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Elhanan Haenel for reporting this issue."
            }
          ],
          "datePublic": "2026-03-11T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This condition results in an infinite loop that continuously consumes CPU resources. Because the archive passes checksum validation and appears structurally valid, affected applications cannot detect the issue before processing. This can allow attackers to cause persistent denial-of-service conditions in services that automatically process archives."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-835",
                  "description": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-10T17:33:56.419Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10065",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10065"
            },
            {
              "name": "RHSA-2026:10081",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10081"
            },
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:16008",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16008"
            },
            {
              "name": "RHSA-2026:16009",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16009"
            },
            {
              "name": "RHSA-2026:16174",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:16174"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:25096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:25096"
            },
            {
              "name": "RHSA-2026:5063",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5063"
            },
            {
              "name": "RHSA-2026:5080",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5080"
            },
            {
              "name": "RHSA-2026:6647",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:6647"
            },
            {
              "name": "RHSA-2026:7093",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7093"
            },
            {
              "name": "RHSA-2026:7105",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7105"
            },
            {
              "name": "RHSA-2026:7106",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7106"
            },
            {
              "name": "RHSA-2026:7239",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7239"
            },
            {
              "name": "RHSA-2026:7329",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7329"
            },
            {
              "name": "RHSA-2026:7335",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7335"
            },
            {
              "name": "RHSA-2026:8423",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8423"
            },
            {
              "name": "RHSA-2026:8746",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8746"
            },
            {
              "name": "RHSA-2026:8747",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8747"
            },
            {
              "name": "RHSA-2026:8748",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8748"
            },
            {
              "name": "RHSA-2026:8865",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8865"
            },
            {
              "name": "RHSA-2026:8944",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8944"
            },
            {
              "name": "RHSA-2026:9832",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:9832"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2026-4111"
            },
            {
              "name": "RHBZ#2446453",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446453"
            },
            {
              "url": "https://github.com/libarchive/libarchive/pull/2877"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-03-11T11:18:51.609Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-11T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2026-4111",
        "datePublished": "2026-03-13T11:45:20.653Z",
        "dateReserved": "2026-03-13T11:33:42.645Z",
        "dateUpdated": "2026-06-30T12:09:22.730Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-12801 (GCVE-0-2025-12801)

    Vulnerability from cvelistv5 – Published: 2026-03-04 15:25 – Updated: 2026-06-29 23:29
    VLAI
    Title
    Nfs-utils: rpc.mountd in the nfs-utils privilege escalation
    Summary
    A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exported directory, regardless of the set file permissions, and regardless of any 'root_squash' or 'all_squash' attributes that would normally be expected to apply to that client.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-279 - Incorrect Execution-Assigned Permissions
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:3938 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3939 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3940 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3941 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3942 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5127 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5606 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5867 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5873 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5877 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-12801 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2413081 issue-trackingx_refsource_REDHAT
    Impacted products
    Vendor Product Version
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 1:2.8.3-0.el10_1.3 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 1:2.3.3-68.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 1:2.5.4-38.el9_7.3 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/a:redhat:enterprise_linux:9::crb
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 1:2.5.4-26.el9_4.3 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 1:2.5.4-34.el9_6.3 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/a:redhat:rhel_eus:9.6::crb
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202603231244-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202603242359-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202603181125-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202603251941-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 8 Unaffected: 1774002867 , < * (rpm)
        cpe:/a:redhat:ceph_storage:8::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Date Public
    2026-03-04 15:06
    Credits
    Red Hat would like to thank Simon Hall for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-12801",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-04T16:16:10.569638Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-04T16:16:16.509Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.8.3-0.el10_1.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.3.3-68.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-38.el9_7.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-38.el9_7.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-26.el9_4.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/a:redhat:rhel_eus:9.6::crb",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.5.4-34.el9_6.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202603231244-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202603242359-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202603181125-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202603251941-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:8::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-8-rhel9",
              "product": "Red Hat Ceph Storage 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1774002867",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "nfs-utils-lib",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "affected",
              "packageName": "nfs-utils",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Simon Hall for reporting this issue."
            }
          ],
          "datePublic": "2026-03-04T15:06:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the\nprivileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exported directory, regardless of the set file permissions, and regardless of any \u0027root_squash\u0027 or \u0027all_squash\u0027 attributes that would normally be expected to apply to that client."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-279",
                  "description": "Incorrect Execution-Assigned Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T23:29:08.412Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:3938",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3938"
            },
            {
              "name": "RHSA-2026:3939",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3939"
            },
            {
              "name": "RHSA-2026:3940",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3940"
            },
            {
              "name": "RHSA-2026:3941",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3941"
            },
            {
              "name": "RHSA-2026:3942",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3942"
            },
            {
              "name": "RHSA-2026:5127",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5127"
            },
            {
              "name": "RHSA-2026:5606",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5606"
            },
            {
              "name": "RHSA-2026:5867",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5867"
            },
            {
              "name": "RHSA-2026:5873",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5873"
            },
            {
              "name": "RHSA-2026:5877",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5877"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-12801"
            },
            {
              "name": "RHBZ#2413081",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413081"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-11-06T12:15:57.744Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2026-03-04T15:06:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Nfs-utils: rpc.mountd in the nfs-utils privilege escalation",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-279: Incorrect Execution-Assigned Permissions"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-12801",
        "datePublished": "2026-03-04T15:25:53.403Z",
        "dateReserved": "2025-11-06T12:17:26.749Z",
        "dateUpdated": "2026-06-29T23:29:08.412Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-13601 (GCVE-0-2025-13601)

    Vulnerability from cvelistv5 – Published: 2025-11-26 14:44 – Updated: 2026-06-29 23:29
    VLAI
    Title
    Glib: integer overflow in in g_escape_uri_string()
    Summary
    A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:0936 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0975 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0991 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1323 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1324 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1326 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1327 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1465 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1608 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1624 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1625 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1626 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1627 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1652 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1736 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18344 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18705 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2064 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2072 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2485 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2563 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2633 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2659 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2671 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:2974 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3415 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4419 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7461 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-13601 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2416741 issue-trackingx_refsource_REDHAT
    https://gitlab.gnome.org/GNOME/glib/-/issues/3827
    https://gitlab.gnome.org/GNOME/glib/-/merge_reque…
    https://cert-portal.siemens.com/productcert/html/…
    Impacted products
    Vendor Product Version
    Affected: 0 , < 2.86.3 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.80.4-10.el10_1.12 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.87.0-1.el10 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:2.80.4-4.el10_0.8 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:2.56.1-11.el7_9 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.56.4-168.el8_10 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::crb
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:2.56.4-8.el8_2.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:2.56.4-10.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:2.56.4-10.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.56.4-158.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:2.56.4-158.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:2.56.4-158.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.56.4-164.el8_8 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.56.4-164.el8_8 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.68.4-18.el9_7.1 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/a:redhat:enterprise_linux:9::crb
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.78.6-3.el9 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:2.68.4-5.el9_0.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.68.4-7.el9_2.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.68.4-14.el9_4.5 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:2.68.4-16.el9_6.4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/a:redhat:rhel_eus:9.6::crb
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202602021310-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202602240113-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202602171627-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202603101737-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202602101357-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202602090846-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202602022246-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202602112047-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 8 Unaffected: 1769512383 , < * (rpm)
        cpe:/a:redhat:ceph_storage:8::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1769104765 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 1769111774 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 2.88.0-1.1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1770740405 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770808689 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770807477 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770646925 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Update Infrastructure 5 Unaffected: 1770808765 , < * (rpm)
        cpe:/a:redhat:rhui:5::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8     cpe:/o:redhat:enterprise_linux:8
    Create a notification for this product.
    Siemens RUGGEDCOM RST2428P Affected: 0 , < V4.0 (custom)
    Create a notification for this product.
    Date Public
    2025-11-24 13:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-13601",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-26T14:58:08.094570Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-26T15:02:42.504Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM RST2428P",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V4.0",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T12:59:54.243Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-253495.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://gitlab.gnome.org/GNOME/glib/",
              "defaultStatus": "unaffected",
              "packageName": "glib",
              "versions": [
                {
                  "lessThan": "2.86.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.80.4-10.el10_1.12",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.2"
              ],
              "defaultStatus": "affected",
              "packageName": "mingw-glib2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.87.0-1.el10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.80.4-4.el10_0.8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.1-11.el7_9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::crb",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-168.el8_10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-8.el8_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-10.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-10.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-158.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-158.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-158.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-164.el8_8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.56.4-164.el8_8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-18.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "mingw-glib2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.78.6-3.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-18.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-5.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-7.el9_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-14.el9_4.5",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/a:redhat:rhel_eus:9.6::crb",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.68.4-16.el9_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202602021310-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202602240113-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202602171627-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202603101737-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202602101357-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202602090846-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202602022246-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202602112047-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:8::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-8-rhel9",
              "product": "Red Hat Ceph Storage 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1769512383",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1769104765",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-ui-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1769111774",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "glib2-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.88.0-1.1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770740405",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/cds-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770808689",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/haproxy-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770807477",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/installer-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770646925",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:rhui:5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhui5/rhua-rhel9",
              "product": "Red Hat Update Infrastructure 5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1770808765",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "glib2",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8"
              ],
              "defaultStatus": "affected",
              "packageName": "mingw-glib2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat"
            }
          ],
          "datePublic": "2025-11-24T13:00:15.295Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-190",
                  "description": "Integer Overflow or Wraparound",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T23:29:30.203Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:0936",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0936"
            },
            {
              "name": "RHSA-2026:0975",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0975"
            },
            {
              "name": "RHSA-2026:0991",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0991"
            },
            {
              "name": "RHSA-2026:1323",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1323"
            },
            {
              "name": "RHSA-2026:1324",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1324"
            },
            {
              "name": "RHSA-2026:1326",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1326"
            },
            {
              "name": "RHSA-2026:1327",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1327"
            },
            {
              "name": "RHSA-2026:1465",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1465"
            },
            {
              "name": "RHSA-2026:1608",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1608"
            },
            {
              "name": "RHSA-2026:1624",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1624"
            },
            {
              "name": "RHSA-2026:1625",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1625"
            },
            {
              "name": "RHSA-2026:1626",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1626"
            },
            {
              "name": "RHSA-2026:1627",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1627"
            },
            {
              "name": "RHSA-2026:1652",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1652"
            },
            {
              "name": "RHSA-2026:1736",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1736"
            },
            {
              "name": "RHSA-2026:18344",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18344"
            },
            {
              "name": "RHSA-2026:18705",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18705"
            },
            {
              "name": "RHSA-2026:2064",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2064"
            },
            {
              "name": "RHSA-2026:2072",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2072"
            },
            {
              "name": "RHSA-2026:2485",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2485"
            },
            {
              "name": "RHSA-2026:2563",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2563"
            },
            {
              "name": "RHSA-2026:2633",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2633"
            },
            {
              "name": "RHSA-2026:2659",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2659"
            },
            {
              "name": "RHSA-2026:2671",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2671"
            },
            {
              "name": "RHSA-2026:2974",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:2974"
            },
            {
              "name": "RHSA-2026:3415",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3415"
            },
            {
              "name": "RHSA-2026:4419",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4419"
            },
            {
              "name": "RHSA-2026:7461",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7461"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-13601"
            },
            {
              "name": "RHBZ#2416741",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416741"
            },
            {
              "url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3827"
            },
            {
              "url": "https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4914"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-11-24T12:49:28.274Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-11-24T13:00:15.295Z",
              "value": "Made public."
            }
          ],
          "title": "Glib: integer overflow in in g_escape_uri_string()",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-13601",
        "datePublished": "2025-11-26T14:44:22.680Z",
        "dateReserved": "2025-11-24T12:54:51.473Z",
        "dateUpdated": "2026-06-29T23:29:30.203Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61662 (GCVE-0-2025-61662)

    Vulnerability from cvelistv5 – Published: 2025-11-18 18:20 – Updated: 2026-06-30 03:12
    VLAI
    Title
    Grub2: missing unregister call for gettext command may lead to use-after-free
    Summary
    A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the application to access a memory location that is no longer valid. An attacker could exploit this vulnerability to cause grub to crash, leading to a Denial of Service. Possible data integrity or confidentiality compromise is not discarded.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2026:10097 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:14773 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:15087 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:17596 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4648 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4649 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4652 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4653 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4654 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4760 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4822 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4823 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4830 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4900 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:4998 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5074 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5127 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5233 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:6492 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7239 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:7243 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-61662 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2414683 issue-trackingx_refsource_REDHAT
    https://lists.gnu.org/archive/html/grub-devel/202…
    http://www.openwall.com/lists/oss-security/2025/11/18/5
    Impacted products
    Vendor Product Version
    GNU grub2 Affected: 0 , ≤ 2.14 (semver)
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 1:2.12-29.el10_1.2 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 1:2.12-15.el10_0.2 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 1:2.02-0.87.el7_9.16 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 1:2.02-170.el8_10.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 1:2.02-87.el8_2.14 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 1:2.02-99.el8_4.13 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 1:2.02-99.el8_4.13 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 1:2.02-123.el8_6.19 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 1:2.02-123.el8_6.19 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 1:2.02-123.el8_6.19 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 1:2.02-152.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 1:2.02-152.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 1:2.06-114.el9_7.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 1:2.06-27.el9_0.23 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 1:2.06-61.el9_2.11 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 1:2.06-86.el9_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 1:2.06-105.el9_6.1 , < * (rpm)
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202604010116-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202604080111-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202605060243-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202605060220-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202604211449-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202605112123-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202603181125-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202604080618-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Date Public
    2025-11-18 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61662",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-18T18:44:47.430638Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-416",
                    "description": "CWE-416 Use After Free",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-18T18:44:53.816Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2025-11-18T22:03:43.738Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "http://www.openwall.com/lists/oss-security/2025/11/18/5"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://git.savannah.gnu.org/git/grub.git",
              "defaultStatus": "unaffected",
              "packageName": "grub2",
              "product": "grub2",
              "vendor": "GNU",
              "versions": [
                {
                  "lessThanOrEqual": "2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.12-29.el10_1.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.12-15.el10_0.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-0.87.el7_9.16",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-170.el8_10.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-87.el8_2.14",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-99.el8_4.13",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-99.el8_4.13",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-123.el8_6.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-123.el8_6.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-123.el8_6.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-152.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.02-152.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-114.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-27.el9_0.23",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-61.el9_2.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-86.el9_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "grub2",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.06-105.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202604010116-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202604080111-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202605060243-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202605060220-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202604211449-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202605112123-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202603181125-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202604080618-0",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "datePublic": "2025-11-18T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A Use-After-Free vulnerability has been discovered in GRUB\u0027s gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the application to access a memory location that is no longer valid. An attacker could exploit this vulnerability to cause grub to crash, leading to a Denial of Service. Possible data integrity or confidentiality compromise is not discarded."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T03:12:02.083Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2026:10097",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:10097"
            },
            {
              "name": "RHSA-2026:14773",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:14773"
            },
            {
              "name": "RHSA-2026:15087",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:15087"
            },
            {
              "name": "RHSA-2026:17596",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:17596"
            },
            {
              "name": "RHSA-2026:4648",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4648"
            },
            {
              "name": "RHSA-2026:4649",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4649"
            },
            {
              "name": "RHSA-2026:4652",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4652"
            },
            {
              "name": "RHSA-2026:4653",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4653"
            },
            {
              "name": "RHSA-2026:4654",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4654"
            },
            {
              "name": "RHSA-2026:4760",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4760"
            },
            {
              "name": "RHSA-2026:4822",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4822"
            },
            {
              "name": "RHSA-2026:4823",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4823"
            },
            {
              "name": "RHSA-2026:4830",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4830"
            },
            {
              "name": "RHSA-2026:4900",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4900"
            },
            {
              "name": "RHSA-2026:4998",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:4998"
            },
            {
              "name": "RHSA-2026:5074",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5074"
            },
            {
              "name": "RHSA-2026:5127",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5127"
            },
            {
              "name": "RHSA-2026:5233",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5233"
            },
            {
              "name": "RHSA-2026:6492",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:6492"
            },
            {
              "name": "RHSA-2026:7239",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7239"
            },
            {
              "name": "RHSA-2026:7243",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:7243"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-61662"
            },
            {
              "name": "RHBZ#2414683",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414683"
            },
            {
              "url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-11-12T21:18:21.069Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-11-18T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Grub2: missing unregister call for gettext command may lead to use-after-free",
          "workarounds": [
            {
              "lang": "en",
              "value": "There\u0027s no known mitigation available for this vulnerability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-61662",
        "datePublished": "2025-11-18T18:20:48.351Z",
        "dateReserved": "2025-09-29T20:18:48.975Z",
        "dateUpdated": "2026-06-30T03:12:02.083Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-11561 (GCVE-0-2025-11561)

    Vulnerability from cvelistv5 – Published: 2025-10-09 13:37 – Updated: 2026-03-19 17:18
    VLAI
    Title
    Sssd: sssd default kerberos configuration allows privilege escalation on ad-joined linux systems
    Summary
    A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:19610 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19847 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19848 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19849 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19850 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19851 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19852 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19853 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19854 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19859 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20954 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21020 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21067 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21329 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21795 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22256 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22265 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22277 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22529 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22548 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23113 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0316 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0677 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-11561 vdb-entryx_refsource_REDHAT
    https://blog.async.sg/kerberos-ldr
    https://bugzilla.redhat.com/show_bug.cgi?id=2402727 issue-trackingx_refsource_REDHAT
    https://github.com/SSSD/sssd/issues/8021
    Impacted products
    Vendor Product Version
    Affected: 0 , ≤ 2.11.1 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.10.2-3.el10_0.3 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.11.1-2.el10_1.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:1.16.5-10.el7_9.17 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.9.4-5.el8_10.3 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:8::baseos
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:2.2.3-20.el8_2.3 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:2.4.0-9.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
        cpe:/o:redhat:rhel_aus:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:2.4.0-9.el8_4.4 , < * (rpm)
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
        cpe:/o:redhat:rhel_aus:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.6.2-4.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:2.6.2-4.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:2.6.2-4.el8_6.4 , < * (rpm)
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.8.2-4.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.8.2-4.el8_8.3 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.9.7-4.el9_7.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:9::baseos
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/a:redhat:enterprise_linux:9::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:2.6.2-4.el9_0.4 , < * (rpm)
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.8.2-5.el9_2.6 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.9.4-6.el9_4.4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::crb
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:2.9.6-4.el9_6.3 , < * (rpm)
        cpe:/o:redhat:rhel_eus:9.6::baseos
        cpe:/a:redhat:rhel_eus:9.6::crb
        cpe:/a:redhat:rhel_eus:9.6::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202601061735-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202601130113-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202511122212-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202512100122-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202512030118-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202511260612-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202511170715-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202511252219-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202511252309-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 7 Unaffected: sha256:6b79ed10423d954d21dd24c9cb1cf507f6e02c2942ace7fa30cf7af2ffaeb631 , < * (rpm)
        cpe:/a:redhat:ceph_storage:7::el9
    Create a notification for this product.
    Red Hat Red Hat Ceph Storage 8 Unaffected: sha256:04a48d31f7336e0d5958eed1ddb1a117148f791baccef4e6e08943181e6794c8 , < * (rpm)
        cpe:/a:redhat:ceph_storage:8::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Date Public
    2025-10-09 00:00
    Credits
    Red Hat would like to thank Zavier Lee for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11561",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-10T03:55:25.417800Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:57.941Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://sssd.io/",
              "defaultStatus": "unaffected",
              "packageName": "sssd",
              "versions": [
                {
                  "lessThanOrEqual": "2.11.1",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.2-3.el10_0.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.11.1-2.el10_1.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.16.5-10.el7_9.17",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos",
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.4-5.el8_10.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8::baseos",
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.4-5.el8_10.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.3-20.el8_2.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos",
                "cpe:/o:redhat:rhel_aus:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-9.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos",
                "cpe:/o:redhat:rhel_aus:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-9.el8_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el8_6.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.8.2-4.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.8.2-4.el8_8.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9::baseos",
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-4.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9::baseos",
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/a:redhat:enterprise_linux:9::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-4.el9_7.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.2-4.el9_0.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.8.2-5.el9_2.6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::crb",
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.4-6.el9_4.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_eus:9.6::baseos",
                "cpe:/a:redhat:rhel_eus:9.6::crb",
                "cpe:/a:redhat:rhel_eus:9.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.6-4.el9_6.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202601061735-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202601130113-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202511122212-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202512100122-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202512030118-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202511260612-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202511170715-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202511252219-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202511252309-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:7::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-7-rhel9",
              "product": "Red Hat Ceph Storage 7",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "sha256:6b79ed10423d954d21dd24c9cb1cf507f6e02c2942ace7fa30cf7af2ffaeb631",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:ceph_storage:8::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhceph/rhceph-8-rhel9",
              "product": "Red Hat Ceph Storage 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "sha256:04a48d31f7336e0d5958eed1ddb1a117148f791baccef4e6e08943181e6794c8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "sssd",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Zavier Lee for reporting this issue."
            }
          ],
          "datePublic": "2025-10-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "Improper Privilege Management",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-19T17:18:09.567Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:19610",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19610"
            },
            {
              "name": "RHSA-2025:19847",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19847"
            },
            {
              "name": "RHSA-2025:19848",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19848"
            },
            {
              "name": "RHSA-2025:19849",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19849"
            },
            {
              "name": "RHSA-2025:19850",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19850"
            },
            {
              "name": "RHSA-2025:19851",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19851"
            },
            {
              "name": "RHSA-2025:19852",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19852"
            },
            {
              "name": "RHSA-2025:19853",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19853"
            },
            {
              "name": "RHSA-2025:19854",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19854"
            },
            {
              "name": "RHSA-2025:19859",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19859"
            },
            {
              "name": "RHSA-2025:20954",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20954"
            },
            {
              "name": "RHSA-2025:21020",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21020"
            },
            {
              "name": "RHSA-2025:21067",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21067"
            },
            {
              "name": "RHSA-2025:21329",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21329"
            },
            {
              "name": "RHSA-2025:21795",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21795"
            },
            {
              "name": "RHSA-2025:22256",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22256"
            },
            {
              "name": "RHSA-2025:22265",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22265"
            },
            {
              "name": "RHSA-2025:22277",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22277"
            },
            {
              "name": "RHSA-2025:22529",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22529"
            },
            {
              "name": "RHSA-2025:22548",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22548"
            },
            {
              "name": "RHSA-2025:22724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22724"
            },
            {
              "name": "RHSA-2025:23113",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23113"
            },
            {
              "name": "RHSA-2026:0316",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0316"
            },
            {
              "name": "RHSA-2026:0677",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0677"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-11561"
            },
            {
              "url": "https://blog.async.sg/kerberos-ldr"
            },
            {
              "name": "RHBZ#2402727",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402727"
            },
            {
              "url": "https://github.com/SSSD/sssd/issues/8021"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-09T12:57:29.851Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-10-09T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Sssd: sssd default kerberos configuration allows privilege escalation on ad-joined linux systems",
          "workarounds": [
            {
              "lang": "en",
              "value": "To mitigate this issue, ensure the SSSD Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is configured and the an2ln plugin is disabled by adding \"disable = an2ln\" in a krb5 include file, for example /var/lib/sss/pubconf/krb5.include.d/localauth_plugin and make sure it is included in the Kerberos configuration. Apply vendor updates and follow Red Hat guidance for SSSD hardening."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-269: Improper Privilege Management"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-11561",
        "datePublished": "2025-10-09T13:37:53.089Z",
        "dateReserved": "2025-10-09T13:03:30.189Z",
        "dateUpdated": "2026-03-19T17:18:09.567Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-11234 (GCVE-0-2025-11234)

    Vulnerability from cvelistv5 – Published: 2025-10-03 10:30 – Updated: 2026-06-01 03:03
    VLAI
    Title
    Qemu-kvm: vnc websocket handshake use-after-free
    Summary
    A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:23228 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0326 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0332 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0702 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1831 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18772 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:22147 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3077 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3165 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:5578 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-11234 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2401209 issue-trackingx_refsource_REDHAT
    Impacted products
    Vendor Product Version
    Affected: 2.6.0 , < 10.1.2 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 18:10.0.0-14.el10_1.5 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020251120003312.489197e6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020251202222937.489197e6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/a:redhat:enterprise_linux:8::crb
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 17:10.1.0-17.el9_8 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 17:6.2.0-11.el9_0.10 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 17:7.2.0-14.el9_2.24 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 17:8.2.0-11.el9_4.18 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 17:8.2.0-11.el9_4.19 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202601071926-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202601120213-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202601071817-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Date Public
    2025-09-30 12:18
    Credits
    Red Hat would like to thank Grant Millar (Cylo) for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11234",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-03T15:56:54.379790Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-03T15:57:08.606Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://gitlab.com/qemu-project/qemu",
              "defaultStatus": "unaffected",
              "packageName": "qemu",
              "versions": [
                {
                  "lessThan": "10.1.2",
                  "status": "affected",
                  "version": "2.6.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "18:10.0.0-14.el10_1.5",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "virt-devel:rhel",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020251120003312.489197e6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/a:redhat:enterprise_linux:8::crb"
              ],
              "defaultStatus": "affected",
              "packageName": "virt:rhel",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020251202222937.489197e6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:10.1.0-17.el9_8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:6.2.0-11.el9_0.10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:7.2.0-14.el9_2.24",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:8.2.0-11.el9_4.18",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "17:8.2.0-11.el9_4.19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202601071926-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202601120213-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202601071817-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unaffected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unaffected",
              "packageName": "qemu-kvm",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "affected",
              "packageName": "qemu-kvm-ma",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Grant Millar (Cylo) for reporting this issue."
            }
          ],
          "datePublic": "2025-09-30T12:18:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:03:58.100Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:23228",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23228"
            },
            {
              "name": "RHSA-2026:0326",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0326"
            },
            {
              "name": "RHSA-2026:0332",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0332"
            },
            {
              "name": "RHSA-2026:0702",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0702"
            },
            {
              "name": "RHSA-2026:1831",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1831"
            },
            {
              "name": "RHSA-2026:18772",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18772"
            },
            {
              "name": "RHSA-2026:22147",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:22147"
            },
            {
              "name": "RHSA-2026:3077",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3077"
            },
            {
              "name": "RHSA-2026:3165",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3165"
            },
            {
              "name": "RHSA-2026:5578",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:5578"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-11234"
            },
            {
              "name": "RHBZ#2401209",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401209"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-09-30T00:00:00.000Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-09-30T12:18:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Qemu-kvm: vnc websocket handshake use-after-free",
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-416: Use After Free"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-11234",
        "datePublished": "2025-10-03T10:30:34.427Z",
        "dateReserved": "2025-10-01T17:03:04.737Z",
        "dateUpdated": "2026-06-01T03:03:58.100Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-4953 (GCVE-0-2025-4953)

    Vulnerability from cvelistv5 – Published: 2025-09-16 14:54 – Updated: 2026-06-30 10:40
    VLAI
    Title
    Podman: build context bind mount
    Summary
    A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-378 - Creation of Temporary File With Insecure Permissions
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2024:8690 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15904 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16729 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:17669 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22265 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22275 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22695 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:22732 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23113 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:2703 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0316 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-4953 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2367235 issue-trackingx_refsource_REDHAT
    https://github.com/containers/podman/pull/25173
    Impacted products
    Vendor Product Version
    Affected: 0 , < * (git)
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020250911075811.afee755d , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 3:4.2.0-15.rhaos4.12.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202601061735-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1:1.29.1-5.rhaos4.13.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 3:2.1.7-5.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1:1.4.0-5.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:1.26.5-26.rhaos4.13.giteb3d487.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:1.26.0-7.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:2.2.24-5.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:2.15.0-10.rhaos4.13.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.g53fd427.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.gd2acdd5.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.g1397e80.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.gd192e90.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:4.13.0-202410181847.p0.g36754b7.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 3:4.4.1-15.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 4:1.1.14-2.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 2:1.11.3-4.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 1:1.29.5-1.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:5.14.0-284.109.1.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 0:5.14.0-284.109.1.rt14.394.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 3:4.4.1-16.rhaos4.13.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el8
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202511261311-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202512031525-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202512100122-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:4.9.4-16.rhaos4.16.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202512030118-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202511260612-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 5:5.2.2-2.rhaos4.18.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202512022246-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10     cpe:/o:redhat:enterprise_linux:10
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9     cpe:/o:redhat:enterprise_linux:9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4     cpe:/a:redhat:openshift:4
    Create a notification for this product.
    Date Public
    2025-09-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-4953",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-09-16T16:15:17.109594Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-16T16:15:21.591Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/containers/podman/",
              "defaultStatus": "unknown",
              "packageName": "podman",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "50295e5e5d1a4583d26d5c6d5c0608cff498cc8d",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "*",
                  "status": "affected",
                  "version": "0",
                  "versionType": "git"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020250911075811.afee755d",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.2.0-15.rhaos4.12.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202601061735-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "buildah",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.29.1-5.rhaos4.13.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "conmon",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:2.1.7-5.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "containernetworking-plugins",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.4.0-5.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.26.5-26.rhaos4.13.giteb3d487.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-tools",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.26.0-7.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "haproxy",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.24-5.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ignition",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.15.0-10.rhaos4.13.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.g53fd427.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4-aws-iso",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.gd2acdd5.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.g1397e80.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-clients",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.gd192e90.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-kuryr",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.13.0-202410181847.p0.g36754b7.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-15.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "runc",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:1.1.14-2.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "skopeo",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:1.11.3-4.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "buildah",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.29.5-1.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.109.1.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.109.1.rt14.394.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el8",
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-16.rhaos4.13.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202511261311-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202512031525-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202512100122-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-16.rhaos4.16.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202512030118-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202511260612-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.2.2-2.rhaos4.18.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202512022246-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10"
              ],
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:9"
              ],
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4",
              "vendor": "Red Hat"
            }
          ],
          "datePublic": "2025-09-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-378",
                  "description": "Creation of Temporary File With Insecure Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T10:40:26.109Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2024:8690",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2024:8690"
            },
            {
              "name": "RHSA-2025:15904",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15904"
            },
            {
              "name": "RHSA-2025:16724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16724"
            },
            {
              "name": "RHSA-2025:16729",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16729"
            },
            {
              "name": "RHSA-2025:17669",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:17669"
            },
            {
              "name": "RHSA-2025:22265",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22265"
            },
            {
              "name": "RHSA-2025:22275",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22275"
            },
            {
              "name": "RHSA-2025:22695",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22695"
            },
            {
              "name": "RHSA-2025:22724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22724"
            },
            {
              "name": "RHSA-2025:22732",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:22732"
            },
            {
              "name": "RHSA-2025:23113",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23113"
            },
            {
              "name": "RHSA-2025:2703",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:2703"
            },
            {
              "name": "RHSA-2026:0316",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0316"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-4953"
            },
            {
              "name": "RHBZ#2367235",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367235"
            },
            {
              "url": "https://github.com/containers/podman/pull/25173"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-05-19T11:46:53.335Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-09-16T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Podman: build context bind mount",
          "workarounds": [
            {
              "lang": "en",
              "value": "Avoid long-running build steps and overly permissive file permissions. Use RUN --mount=type=secret for sensitive data instead of bind mounts."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-378: Creation of Temporary File With Insecure Permissions"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-4953",
        "datePublished": "2025-09-16T14:54:50.045Z",
        "dateReserved": "2025-05-19T11:55:32.522Z",
        "dateUpdated": "2026-06-30T10:40:26.109Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-9566 (GCVE-0-2025-9566)

    Vulnerability from cvelistv5 – Published: 2025-09-05 19:54 – Updated: 2026-06-29 20:49
    VLAI
    Title
    Podman: podman kube play command may overwrite host files
    Summary
    There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file. Binary-Affected: podman Upstream-version-introduced: v4.0.0 Upstream-version-fixed: v5.6.1
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHBA-2025:15692 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHBA-2025:15712 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHBA-2025:16158 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHBA-2025:16163 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHEA-2025:4782 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15900 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15901 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15904 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16480 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16481 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16482 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16488 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16515 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:16724 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:17669 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18217 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18218 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18240 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19002 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19041 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19046 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19094 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:19894 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20909 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:20983 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18289 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:18722 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:8211 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-9566 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2393152 issue-trackingx_refsource_REDHAT
    https://github.com/containers/podman/commit/43fbd…
    https://github.com/containers/podman/security/adv…
    Impacted products
    Vendor Product Version
    Affected: 4.0.0 , < 5.6.1 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 6:5.4.0-13.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 7:5.6.0-5.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 7:5.8.0-2.el10 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.2
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 8100020250911075811.afee755d , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 8060020250919150821.3b538bd8 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 8060020250919150821.3b538bd8 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 8060020250919150821.3b538bd8 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 8080020250919060528.0f77c1b7 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 8080020250919060528.0f77c1b7 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 5:5.4.0-13.el9_6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 6:5.6.0-6.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 6:5.8.0-1.el9 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 2:4.2.0-6.el9_0.5 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 2:4.4.1-22.el9_2.4 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 4:4.9.4-18.el9_4.3 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 0:4.18.0-372.164.1.el8_6 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 0:4.18.0-372.164.1.rt7.325.el8_6 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 3:4.2.0-15.rhaos4.12.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
        cpe:/a:redhat:openshift:4.12::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202510291903-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202510150118-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 0:5.14.0-284.138.1.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el8
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 0:5.14.0-284.138.1.rt14.423.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el8
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 3:4.4.1-23.rhaos4.14.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el8
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202510211419-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 0:5.14.0-284.138.1.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el8
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 0:5.14.0-284.138.1.rt14.423.el9_2 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el8
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 3:4.4.1-35.rhaos4.15.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el8
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:2.237.0-2.rhaos4.16.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 0:4.16.0-202509111927.p2.gf3d9123.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 4:4.9.4-16.rhaos4.16.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el8
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202510112152-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 4:2.237.0-1.rhaos4.18.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:1.31.12-3.rhaos4.18.gitdc59c78.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:5.14.0-427.87.1.el9_4 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:4.18.0-202509090932.p2.ga4cad44.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 0:4.18.0-202509011551.p2.g018e43a.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 5:5.2.2-11.rhaos4.18.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el8
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202510230424-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4:2.237.0-1.rhaos4.19.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 0:1.32.8-3.rhaos4.19.git60d4e21.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 0:4.19.0-202509070341.p2.gb5229e8.assembly.stream.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 5:5.4.0-7.rhaos4.19.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202510140714-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.12.1-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4:2.237.0-1.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.33.4-4.rhaos4.20.gitc8e7df2.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.33.0-1.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.18-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.4-3.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.18.3-8.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.17.0-4.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509232257.p2.ge0d4216.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gd2acdd5.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.g75653ac.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.ga434281.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2023.1.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gbb88da1.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gd469d04.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.20.0-202509051528.p2.gf940e72.assembly.stream.el8 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 5:5.4.0-12.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.2-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.1-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.2.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.9-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.4.12-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.4-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.33-1.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.3.2-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:2.8.2-10.3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.2-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.16.0-13.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.13.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.3.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.2-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.4-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-6.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:22.2.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.0-0.20250214184706.9255778.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.0-2.el9ocp.3 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.6-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.12.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.1-13.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.31.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.3.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.0-17.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.3-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2020.12.5-2.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.2.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:10.0.1-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:9.5.0-0.20240522170018.e01516d.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.1.3-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.9.1-0.20250327182035.083572e.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-3.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.6-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.10.56-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:21.6.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.6-0.1b1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.1-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.0-0.20250214185318.0e6ce1c.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.1.1-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.6-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.19-5.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.5-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.0.1-1.20241010230108.da7647f.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.20.46-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.4-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.2-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.40.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.9.0-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-29.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.19-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.12.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0.1-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 2:2.2.5-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.9.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.2-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.2-31.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.0-0.20250320142819.bd83787.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.4.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.7.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:4.5.0-0.20240522162619.f683776.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:20.0.4-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.0.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:24.1.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.21.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:1.1-5.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.20.4-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.5-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.82.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.7-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.1.6-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.1-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.9.6-26.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.9.0-0.20211209154935.6f1be06.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.5.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.1.12-9.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.4.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.1-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.2.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.0-5.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.6-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.21-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.3-23.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.2-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.10-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.17.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.3-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.7.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.0-12.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:25.6.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.10.0-0.20250410121004.60f441a.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:5.6.0-0.20250320142042.0d43c46.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:10.9.0-0.20250320143526.557d173.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:5.3.3-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.7-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.4.10-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-25.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.5-24.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.3-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.1-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.0-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.58-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.1-0.20240522145956.2c36df6.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.13.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.0-17.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.3-15.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0.3-10.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5-10.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.13.0-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.5-3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.5.0-13.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.7-42.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.2-6.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.6.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.0-0.20250320142042.d3fdae8.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.0-0.20210722194730.bc96c23.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.10.1-0.20250320152415.0a940fc.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.1.0-0.20250320152408.6250095.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 2:9.7.1-0.20250320144138.d583141.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.0.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:17.2.1-0.20250408142043.dc60623.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.5.1-0.20250320144953.162e0fa.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.2.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:16.1.0-0.20250320153323.e91bb45.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.11.0-0.20250320150939.c64d51c.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.3.1-0.20250320145060.8af9987.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.5.1-0.20250320145711.3bb5d92.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.5.1-0.20250328152037.d8148bf.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.7.0-0.20250320153129.bff992d.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.1.1-0.20250320154558.7a52803.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.4.1-0.20210812115054.aaf3a72.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.5.0-0.20250320145717.27366ba.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.2.0-0.20250408162039.cb68378.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.6.0-0.20250320151147.79e9d5d.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.2.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.7.0-0.20250214183755.0b2f473.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.3.0-0.20250320143432.1b608ff.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.5.3-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.1.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.1.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.2-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.13.0-5.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.8.0-17.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.0.1-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.9.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.1-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.8-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.6.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.9.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.0-5.2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.11.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.2-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0.1-0.20250320142810.3cea59f.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.11.0-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.10.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.45.2-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.34-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.15.1-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.5.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.0-4.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.19.3-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.18.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.11.1-4.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.6.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.6.3-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.12.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:10.2-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.0-20.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.0-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.5.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.22.2-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.22.0-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.0.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.32.3-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-0.20250214183755.d7ac0ff.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.12.0-13.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.0-3.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.3-3.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.0-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.4.1-12.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.2.0-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.3.3-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:23.1.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:7.1.0-7.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.5.4-4.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.8.1-18.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.17.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.4.0.3-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.3.4-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.3-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.2.0-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.3.0-3.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1.0-3.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 1:6.2.1-4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.2-14.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.7.0-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.1-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.1-22.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.3-15.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.1.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.2.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.16-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.54-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.4-10.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.2.1-20.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6.0-8.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.4.1-0.20250320150534.27e27c1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.6.0-0.20250507082031.06e32b5.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.2-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.14.1-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:8.5.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.6.0-10.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.20-20.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-11.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.0-22.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.6.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.2-13.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.1-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.0.0-9.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.3.0-0.20250214203240.734acc4.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:6.1.0-3.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.14.2-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.14-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-25.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2023.10.18-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.7.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.1.5-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.12.2-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.9.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.1-2.3.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.0.0-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:20.21.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.11.7-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.3-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.5-3.el9ocp.3 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.5.1-16.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.8.8-2.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.10.0-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.33-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.2.3-3.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.17.2-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.12.0-1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2.0.3-5.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.3.6-6.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.2.2-19.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.24.4-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:3.19.1-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.0.2-2.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.2.0-21.el9ocp.2 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:5.4.0-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:4.7-5.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:2024.2-1.1.el9ocp , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:1.4.0-7.el9ocp.1 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.1.2-1.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 0:0.14.0-2.rhaos4.20.el9 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el8
        cpe:/a:redhat:openshift:4.20::el9
        cpe:/a:redhat:openshift_ironic:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202510220229-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 5.8.2-1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat OpenShift Dev Spaces (RHOSDS) 3.24 Unaffected: 3.24-1760921292 , < * (rpm)
        cpe:/a:redhat:openshift_devspaces:3.24::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Dev Spaces (RHOSDS) 3.24 Unaffected: 3.24-1761160160 , < * (rpm)
        cpe:/a:redhat:openshift_devspaces:3.24::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4     cpe:/a:redhat:openshift:4
    Create a notification for this product.
    Date Public
    2025-09-04 00:00
    Credits
    This issue was discovered by Paul Holzinger (Red Hat).
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-9566",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-09-05T20:16:38.360629Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-05T20:16:46.977Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/containers/podman",
              "defaultStatus": "unaffected",
              "packageName": "podman",
              "versions": [
                {
                  "lessThan": "5.6.1",
                  "status": "affected",
                  "version": "4.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.4.0-13.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7:5.6.0-5.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.2"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "7:5.8.0-2.el10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8100020250911075811.afee755d",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8060020250919150821.3b538bd8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8060020250919150821.3b538bd8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8060020250919150821.3b538bd8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8080020250919060528.0f77c1b7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "container-tools:rhel8",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "8080020250919060528.0f77c1b7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-13.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.6.0-6.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "6:5.8.0-1.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:4.2.0-6.el9_0.5",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:4.4.1-22.el9_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-18.el9_4.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-372.164.1.el8_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-372.164.1.rt7.325.el8_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8",
                "cpe:/a:redhat:openshift:4.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.2.0-15.rhaos4.12.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202510291903-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202510150118-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el8",
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el8",
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.rt14.423.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el8",
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-23.rhaos4.14.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202510211419-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el8",
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el8",
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel-rt",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-284.138.1.rt14.423.el9_2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el8",
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3:4.4.1-35.rhaos4.15.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-2.rhaos4.16.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.16.0-202509111927.p2.gf3d9123.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el8",
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:4.9.4-16.rhaos4.16.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202510112152-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.18.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.31.12-3.rhaos4.18.gitdc59c78.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kernel",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.14.0-427.87.1.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-202509090932.p2.ga4cad44.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.18.0-202509011551.p2.g018e43a.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el8",
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.2.2-11.rhaos4.18.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202510230424-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.19.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.32.8-3.rhaos4.19.git60d4e21.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.19.0-202509070341.p2.gb5229e8.assembly.stream.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-7.rhaos4.19.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202510140714-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "babel",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.12.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.4-4.rhaos4.20.gitc8e7df2.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-tools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.0-1.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "dbus-python3.12",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.18-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ephemeral-port-reserve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.4-3.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "future",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kata-containers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-4.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509232257.p2.ge0d4216.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4-aws-iso",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd2acdd5.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.g75653ac.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-clients",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.ga434281.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openstack-macros",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-aws-ecr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gbb88da1.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-azure-acr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd469d04.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-gcp-gcr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gf940e72.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-12.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "poetry",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyflakes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyOpenSSL",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyparsing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.9-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.12-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmpcrypto",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.4-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.33-1.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.3.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-dateutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.8.2-10.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-mypy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-pyyaml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-six",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.16.0-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-alembic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.13.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-amqp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-apipkg",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-appdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-async-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-atomicwrites",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-6.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-attrs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:22.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-automaton",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250214184706.9255778.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-autopage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-2.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-bcrypt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-beautifulsoup4",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-betamax",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-binary-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.31.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-build",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachetools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-case",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-certifi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2020.12.5-2.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-chardet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cheroot",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cinderclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:9.5.0-0.20240522170018.e01516d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cleo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-click",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.1.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cliff",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.1-0.20250327182035.083572e.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cmd2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-colorama",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-construct",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.56-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-contextlib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:21.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-coverage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6-0.1b1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-crashtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ddt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-debtcollector",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-0.20250214185318.0e6ce1c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-decorator",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.1.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-defusedxml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-distlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.6-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dns",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-docutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dogpile-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dracclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.0.1-1.20241010230108.da7647f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dulwich",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.46-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editables",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editor",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.4-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-elementpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-eventlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.40.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-execnet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.9.0-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-extras",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-29.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fasteners",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-filelock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fixtures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flake8",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flask",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:2.2.5-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-freezegun",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-funcsigs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-31.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-futurist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-0.20250320142819.bd83787.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gabbi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gevent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-glanceclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:4.5.0-0.20240522162619.f683776.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-greenlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gunicorn",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.0.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hacking",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-fancy-pypi-readme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:24.1.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatchling",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-vcs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-html5lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.1-5.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httplib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.4-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httpretty",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.82.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesmith",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-idna",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ifaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-imagesize",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iniparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-inotify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-26.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironicclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.0-0.20211209154935.6f1be06.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironic-prometheus-exporter",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iso8601",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.12-9.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-itsdangerous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-classes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.1-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-functools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-text",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jeepney",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jinja2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jmespath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-23.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw-ext",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpointer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.10-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.17.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kafka",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kazoo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-12.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keyring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:25.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneauth1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.10.0-0.20250410121004.60f441a.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.6.0-0.20250320142042.0d43c46.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystonemiddleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.9.0-0.20250320143526.557d173.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kiwisolver",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kombu",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.3.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-lark",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.7-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-libcst",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.10-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-linecache2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-logutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.5-24.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-m2r",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mako",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-markupsafe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mccabe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.58-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-microversion-parse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-0.20240522145956.2c36df6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-migrate",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mimeparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-17.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mistune",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.3-15.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.3-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-monotonic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5-10.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-more-itertools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.13.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-msgpack",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-munch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-13.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mypy_extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-netaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-nose",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.7-42.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oauthlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.2-6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstackdocstheme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstacksdk",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.6.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osc-lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250320142042.d3fdae8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-client-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-0.20210722194730.bc96c23.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.10.1-0.20250320152415.0a940fc.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-concurrency",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-0.20250320152408.6250095.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:9.7.1-0.20250320144138.d583141.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-db",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:17.2.1-0.20250408142043.dc60623.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-i18n",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.5.1-0.20250320144953.162e0fa.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-log",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-messaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:16.1.0-0.20250320153323.e91bb45.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-metrics",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.0-0.20250320150939.c64d51c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-middleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.1-0.20250320145060.8af9987.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-policy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.1-0.20250320145711.3bb5d92.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-rootwrap",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.5.1-0.20250328152037.d8148bf.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-serialization",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.7.0-0.20250320153129.bff992d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-service",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.1-0.20250320154558.7a52803.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslotest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.1-0.20210812115054.aaf3a72.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-upgradecheck",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-0.20250320145717.27366ba.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-utils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.0-0.20250408162039.cb68378.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-versionedobjects",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-0.20250320151147.79e9d5d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osprofiler",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-service-types",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-0.20250214183755.0b2f473.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-traits",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.0-0.20250320143432.1b608ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste-deploy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pathspec",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pbr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pecan",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pep517",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pexpect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.8.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pint",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pkginfo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.0.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-platformdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pluggy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-poetry-core",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-portend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pretend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.8-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prettytable",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prometheus_client",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-psutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.9.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ptyprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-py",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasn1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasyncore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycadf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-0.20250320142810.3cea59f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycdlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycodestyle",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycurl",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.45.2-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyghmi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.34-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pygments",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.15.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pymemcache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyperclip",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-4.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-api",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-hooks",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyrsistent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-asyncio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-cov",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.11.1-4.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-forked",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-lazy-fixture",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-rerunfailures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.2-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-runner",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xdist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyudev",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-railroad-diagrams",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-redis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-repoze-lru",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.32.3-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requestsexceptions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-0.20250214183755.d7ac0ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.12.0-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-toolbelt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-unixsocket",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-retrying",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rfc3986",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-routes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.1-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rst-linker",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-SecretStorage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-service-identity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.1.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-setuptools_scm",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-shellingham",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplegeneric",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-18.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplejson",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-singledispatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0.3-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.4-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-snowballstemmer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sortedcontainers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.3.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-soupsieve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:6.2.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-applehelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-devhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-htmlhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-httpdomain",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jquery",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jsmath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-22.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-qthelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-15.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-serializinghtml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx_rtd_theme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx-theme-alabaster",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.16-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlalchemy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.54-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.4-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-statsd",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.1-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stestr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-8.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stevedore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.1-0.20250320150534.27e27c1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sure",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sushy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6.0-0.20250507082031.06e32b5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempita",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempora",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.14.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tenacity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.0-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testrepository",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.20-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testresources",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-11.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testscenarios",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.0-22.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testtools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-toml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.2-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli-w",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-9.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tooz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.0-0.20250214203240.734acc4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tornado",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.14.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox-current-env",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.14-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-traceback2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trove-classifiers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.10.18-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trustme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typeguard",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-inspect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-uhashring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1-2.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-vine",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-virtualenv",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-voluptuous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.7-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-waitress",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-warlock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wcwidth",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.5-3.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webencodings",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-16.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webob",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.8-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-websockify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.33-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-werkzeug",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wrapt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.17.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wsgi_intercept",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.12.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-xmlschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-yappi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zake",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.2-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zeroconf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.24.4-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zipp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.19.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zombie-imp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-event",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-21.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-interface",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-testing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.7-5.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2024.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "subunit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-7.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "toolbox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.2-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "wasmedge",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.14.0-2.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202510220229-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "babel",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.12.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "container-selinux",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4:2.237.0-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-o",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.4-4.rhaos4.20.gitc8e7df2.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cri-tools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.33.0-1.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "dbus-python3.12",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.18-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ephemeral-port-reserve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.4-3.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "future",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "kata-containers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-4.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509232257.p2.ge0d4216.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift4-aws-iso",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd2acdd5.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-ansible",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.g75653ac.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-clients",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.ga434281.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "openstack-macros",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-aws-ecr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gbb88da1.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-azure-acr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gd469d04.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "ose-gcp-gcr-image-credential-provider",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.20.0-202509051528.p2.gf940e72.assembly.stream.el8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "podman",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5:5.4.0-12.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "poetry",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyflakes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyOpenSSL",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pyparsing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.9-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.12-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmpcrypto",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.4-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pysnmp-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.33-1.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.3.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-dateutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:2.8.2-10.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-mypy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-pyyaml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python3.12-six",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.16.0-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-alembic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.13.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-amqp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-apipkg",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-appdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-async-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-atomicwrites",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-6.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-attrs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:22.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-automaton",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250214184706.9255778.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-autopage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-2.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-bcrypt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-beautifulsoup4",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-betamax",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-binary-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.31.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-build",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachetools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.3.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cachy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-case",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-certifi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2020.12.5-2.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-chardet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.2.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cheroot",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cinderclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:9.5.0-0.20240522170018.e01516d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cleo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-click",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.1.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cliff",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.1-0.20250327182035.083572e.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-cmd2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-colorama",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-construct",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.56-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-contextlib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:21.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-coverage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6-0.1b1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-crashtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.1-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ddt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-debtcollector",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-0.20250214185318.0e6ce1c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-decorator",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.1.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-defusedxml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-distlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.6-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dns",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-docutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dogpile-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dracclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.0.1-1.20241010230108.da7647f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-dulwich",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.46-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editables",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-editor",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.4-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-elementpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.2-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-eventlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.40.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-execnet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.9.0-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-extras",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-29.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fasteners",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-filelock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-fixtures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flake8",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flask",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:2.2.5-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-flit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-freezegun",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-funcsigs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-31.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-futurist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-0.20250320142819.bd83787.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gabbi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gevent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-glanceclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:4.5.0-0.20240522162619.f683776.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-greenlet",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-gunicorn",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.0.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hacking",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-fancy-pypi-readme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:24.1.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatchling",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hatch-vcs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-html5lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:1.1-5.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httplib2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.20.4-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-httpretty",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.82.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-hypothesmith",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-idna",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.7-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ifaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-imagesize",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iniparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-inotify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.6-26.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironicclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.9.0-0.20211209154935.6f1be06.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ironic-prometheus-exporter",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-iso8601",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.12-9.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-itsdangerous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-classes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.1-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-functools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jaraco-text",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jeepney",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jinja2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.6-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jmespath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.21-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-23.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpath-rw-ext",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonpointer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.10-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-jsonschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.17.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kafka",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kazoo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.7.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-12.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keyring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:25.6.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneauth1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.10.0-0.20250410121004.60f441a.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystoneclient",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.6.0-0.20250320142042.0d43c46.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-keystonemiddleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.9.0-0.20250320143526.557d173.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kiwisolver",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-kombu",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:5.3.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-lark",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.7-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-libcst",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.4.10-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-linecache2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-logutils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.5-24.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-m2r",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mako",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-markupsafe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.1-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mccabe",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-memcached",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.58-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-microversion-parse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-0.20240522145956.2c36df6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-migrate",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mimeparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-17.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mistune",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.3-15.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.3-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-monotonic",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5-10.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-more-itertools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.13.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-msgpack",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.5-3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-munch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-13.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-mypy_extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-netaddr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-nose",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.7-42.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oauthlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.2-6.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstackdocstheme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-openstacksdk",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.6.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osc-lib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.0-0.20250320142042.d3fdae8.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-client-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-0.20210722194730.bc96c23.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-cache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.10.1-0.20250320152415.0a940fc.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-concurrency",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-0.20250320152408.6250095.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-config",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2:9.7.1-0.20250320144138.d583141.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-context",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-db",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:17.2.1-0.20250408142043.dc60623.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-i18n",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.5.1-0.20250320144953.162e0fa.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-log",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-messaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:16.1.0-0.20250320153323.e91bb45.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-metrics",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.0-0.20250320150939.c64d51c.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-middleware",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.1-0.20250320145060.8af9987.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-policy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.5.1-0.20250320145711.3bb5d92.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-rootwrap",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.5.1-0.20250328152037.d8148bf.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-serialization",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.7.0-0.20250320153129.bff992d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-service",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.1-0.20250320154558.7a52803.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslotest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.4.1-0.20210812115054.aaf3a72.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-upgradecheck",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-0.20250320145717.27366ba.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-utils",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.2.0-0.20250408162039.cb68378.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-oslo-versionedobjects",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-0.20250320151147.79e9d5d.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-osprofiler",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-service-types",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-0.20250214183755.0b2f473.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-os-traits",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.0-0.20250320143432.1b608ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-packaging",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-paste-deploy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.1.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pathspec",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pbr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pecan",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pep517",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.13.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pexpect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.8.0-17.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pint",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pkginfo",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.0.1-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-platformdirs",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.9.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pluggy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-poetry-core",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.1-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-portend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pretend",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.8-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prettytable",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-prometheus_client",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-psutil",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.9.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-ptyprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-5.2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-py",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasn1",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyasyncore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycadf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0.1-0.20250320142810.3cea59f.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycdlib",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.11.0-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycodestyle",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.10.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pycurl",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.45.2-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyghmi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.34-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pygments",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.15.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pymemcache",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.5.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyperclip",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-4.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-api",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyproject-hooks",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyrsistent",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.19.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-asyncio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.18.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-cov",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.11.1-4.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-forked",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.6.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-lazy-fixture",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.3-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.12.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-rerunfailures",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:10.2-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-runner",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.0-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-timeout",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xdist",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.5.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pytest-xprocess",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.2-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-pyudev",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.22.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-railroad-diagrams",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-redis",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-repoze-lru",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.32.3-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requestsexceptions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-0.20250214183755.d7ac0ff.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-kerberos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.12.0-13.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-mock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-toolbelt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-requests-unixsocket",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-retrying",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rfc3986",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.0-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-routes",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.4.1-12.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-rst-linker",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-SecretStorage",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.3.3-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-service-identity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:23.1.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-setuptools_scm",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:7.1.0-7.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-shellingham",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.5.4-4.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplegeneric",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.8.1-18.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-simplejson",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.17.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-singledispatch",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.4.0.3-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.3.4-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-smi-lextudio",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.3-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-snowballstemmer",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.0-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sortedcontainers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.3.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-soupsieve",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1.0-3.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1:6.2.1-4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-applehelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-devhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.2-14.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-htmlhelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-httpdomain",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.7.0-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jquery",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-jsmath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.1-22.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-qthelp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.3-15.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinxcontrib-serializinghtml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx_rtd_theme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.2.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sphinx-theme-alabaster",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.16-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlalchemy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.54-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sqlparse",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.4-10.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-statsd",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.2.1-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stestr",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-8.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-stevedore",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.1-0.20250320150534.27e27c1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sure",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-sushy",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.6.0-0.20250507082031.06e32b5.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempita",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.2-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tempora",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.14.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tenacity",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:8.5.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testpath",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.6.0-10.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testrepository",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.20-20.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testresources",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-11.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testscenarios",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.0-22.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-testtools",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.6.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-toml",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.2-13.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.1-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tomli-w",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.0.0-9.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tooz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.3.0-0.20250214203240.734acc4.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tornado",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:6.1.0-3.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.14.2-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-tox-current-env",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.14-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-traceback2",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-25.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trove-classifiers",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2023.10.18-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-trustme",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.7.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typeguard",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.1.5-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-extensions",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.12.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-typing-inspect",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.9.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-uhashring",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.1-2.3.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-vine",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.0.0-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-virtualenv",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:20.21.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-voluptuous",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.7-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-waitress",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.0.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-warlock",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.3-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wcwidth",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.5-3.el9ocp.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webencodings",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.5.1-16.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webob",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.8.8-2.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-websockify",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.0-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-webtest",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.33-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-werkzeug",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.2.3-3.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wrapt",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.17.2-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-wsgi_intercept",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.12.0-1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-xmlschema",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.0.3-5.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-yappi",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.3.6-6.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zake",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.2.2-19.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zeroconf",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.24.4-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zipp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:3.19.1-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zombie-imp",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.0.2-2.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-event",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.2.0-21.el9ocp.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-interface",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:5.4.0-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "python-zope-testing",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:4.7-5.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "pytz",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2024.2-1.1.el9ocp",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "subunit",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.4.0-7.el9ocp.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "toolbox",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.1.2-1.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el8",
                "cpe:/a:redhat:openshift:4.20::el9",
                "cpe:/a:redhat:openshift_ironic:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "wasmedge",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.14.0-2.rhaos4.20.el9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "podman-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "5.8.2-1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_devspaces:3.24::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "devspaces/udi-base-rhel9",
              "product": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.24-1760921292",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_devspaces:3.24::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "devspaces/udi-rhel9",
              "product": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "3.24-1761160160",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "This issue was discovered by Paul Holzinger (Red Hat)."
            }
          ],
          "datePublic": "2025-09-04T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1"
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T20:49:13.397Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHBA-2025:15692",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:15692"
            },
            {
              "name": "RHBA-2025:15712",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:15712"
            },
            {
              "name": "RHBA-2025:16158",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:16158"
            },
            {
              "name": "RHBA-2025:16163",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:16163"
            },
            {
              "name": "RHEA-2025:4782",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHEA-2025:4782"
            },
            {
              "name": "RHSA-2025:15900",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15900"
            },
            {
              "name": "RHSA-2025:15901",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15901"
            },
            {
              "name": "RHSA-2025:15904",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15904"
            },
            {
              "name": "RHSA-2025:16480",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16480"
            },
            {
              "name": "RHSA-2025:16481",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16481"
            },
            {
              "name": "RHSA-2025:16482",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16482"
            },
            {
              "name": "RHSA-2025:16488",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16488"
            },
            {
              "name": "RHSA-2025:16515",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16515"
            },
            {
              "name": "RHSA-2025:16724",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:16724"
            },
            {
              "name": "RHSA-2025:17669",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:17669"
            },
            {
              "name": "RHSA-2025:18217",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18217"
            },
            {
              "name": "RHSA-2025:18218",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18218"
            },
            {
              "name": "RHSA-2025:18240",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18240"
            },
            {
              "name": "RHSA-2025:19002",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19002"
            },
            {
              "name": "RHSA-2025:19041",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19041"
            },
            {
              "name": "RHSA-2025:19046",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19046"
            },
            {
              "name": "RHSA-2025:19094",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19094"
            },
            {
              "name": "RHSA-2025:19894",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:19894"
            },
            {
              "name": "RHSA-2025:20909",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20909"
            },
            {
              "name": "RHSA-2025:20983",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:20983"
            },
            {
              "name": "RHSA-2026:18289",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18289"
            },
            {
              "name": "RHSA-2026:18722",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:18722"
            },
            {
              "name": "RHSA-2026:8211",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:8211"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-9566"
            },
            {
              "name": "RHBZ#2393152",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
            },
            {
              "url": "https://github.com/containers/podman/commit/43fbde4e665fe6cee6921868f04b7ccd3de5ad89"
            },
            {
              "url": "https://github.com/containers/podman/security/advisories/GHSA-wp3j-xq48-xpjw"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-09-04T15:45:46.448Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-09-04T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Podman: podman kube play command may overwrite host files",
          "workarounds": [
            {
              "lang": "en",
              "value": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-9566",
        "datePublished": "2025-09-05T19:54:30.503Z",
        "dateReserved": "2025-08-27T22:17:43.489Z",
        "dateUpdated": "2026-06-29T20:49:13.397Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-7425 (GCVE-0-2025-7425)

    Vulnerability from cvelistv5 – Published: 2025-07-10 13:53 – Updated: 2026-06-29 20:46
    VLAI
    Title
    Libxslt: libxml2: heap use-after-free in libxslt caused by atype corruption in xmlattrptr
    Summary
    A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHBA-2025:12345 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:12447 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:12450 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13267 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13308 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13309 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13310 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13311 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13312 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13313 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13314 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13335 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13464 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:13622 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14059 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14396 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14818 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14819 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14853 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:14858 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15308 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15672 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15827 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:15828 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:18219 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21885 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:21913 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0934 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:11503 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-7425 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2379274 issue-trackingx_refsource_REDHAT
    https://gitlab.gnome.org/GNOME/libxslt/-/issues/140
    https://lists.debian.org/debian-lts-announce/2025…
    http://seclists.org/fulldisclosure/2025/Aug/0
    http://seclists.org/fulldisclosure/2025/Jul/37
    http://seclists.org/fulldisclosure/2025/Jul/35
    http://seclists.org/fulldisclosure/2025/Jul/32
    http://seclists.org/fulldisclosure/2025/Jul/30
    http://www.openwall.com/lists/oss-security/2025/07/11/2
    https://cert-portal.siemens.com/productcert/html/…
    https://cert-portal.siemens.com/productcert/html/…
    https://cert-portal.siemens.com/productcert/html/…
    https://cert-portal.siemens.com/productcert/html/…
    Impacted products
    Vendor Product Version
    GNOME libxml2 Affected: 0 , < 2.15.2 (semver)
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:2.12.5-8.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:1.1.39-8.el10_0 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Unaffected: 0:2.9.1-6.el7_9.12 , < * (rpm)
        cpe:/o:redhat:rhel_els:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8 Unaffected: 0:2.9.7-21.el8_10.2 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:8::appstream
        cpe:/o:redhat:enterprise_linux:8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.2 Advanced Update Support Unaffected: 0:2.9.7-9.el8_2.4 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.2::appstream
        cpe:/o:redhat:rhel_aus:8.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Unaffected: 0:2.9.7-9.el8_4.7 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.4::appstream
        cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Unaffected: 0:2.9.7-9.el8_4.7 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.4::appstream
        cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
        cpe:/o:redhat:rhel_aus:8.4::baseos
        cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Unaffected: 0:2.9.7-13.el8_6.11 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Telecommunications Update Service Unaffected: 0:2.9.7-13.el8_6.11 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Unaffected: 0:2.9.7-13.el8_6.11 , < * (rpm)
        cpe:/a:redhat:rhel_aus:8.6::appstream
        cpe:/a:redhat:rhel_e4s:8.6::appstream
        cpe:/a:redhat:rhel_tus:8.6::appstream
        cpe:/o:redhat:rhel_aus:8.6::baseos
        cpe:/o:redhat:rhel_e4s:8.6::baseos
        cpe:/o:redhat:rhel_tus:8.6::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Telecommunications Update Service Unaffected: 0:2.9.7-16.el8_8.10 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Unaffected: 0:2.9.7-16.el8_8.10 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:8.8::appstream
        cpe:/a:redhat:rhel_tus:8.8::appstream
        cpe:/o:redhat:rhel_e4s:8.8::baseos
        cpe:/o:redhat:rhel_tus:8.8::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:2.9.13-11.el9_6 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Unaffected: 0:2.9.13-1.el9_0.6 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.0::appstream
        cpe:/o:redhat:rhel_e4s:9.0::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:2.9.13-3.el9_2.8 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:2.9.13-11.el9_4 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.12 Unaffected: 412.86.202509030110-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.12::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202509030117-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202508270040-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202508192014-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202508261955-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202508141510-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202508261658-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202508271124-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat Web Terminal 1.11 on RHEL 9 Unaffected: 1.11-19 , < * (rpm)
        cpe:/a:redhat:webterminal:1.11::el9
    Create a notification for this product.
    Red Hat Red Hat Web Terminal 1.11 on RHEL 9 Unaffected: 1.11-8 , < * (rpm)
        cpe:/a:redhat:webterminal:1.11::el9
    Create a notification for this product.
    Red Hat Red Hat Web Terminal 1.12 on RHEL 9 Unaffected: 1.12-4 , < * (rpm)
        cpe:/a:redhat:webterminal:1.12::el9
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-11 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-10 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-4 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-9 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-12 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-18 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat RHOSS-1.36-RHEL-8 Unaffected: 1.36.0-7 , < * (rpm)
        cpe:/a:redhat:openshift_serverless:1.36::el8
    Create a notification for this product.
    Red Hat cert-manager operator for Red Hat OpenShift 1.16 Unaffected: v1.16.5-1760515757 , < * (rpm)
        cpe:/a:redhat:cert_manager:1.16::el9
    Create a notification for this product.
    Red Hat OpenShift Compliance Operator 1 Unaffected: 1.8.0 , < * (rpm)
        cpe:/a:redhat:openshift_compliance_operator:1::el9
    Create a notification for this product.
    Red Hat OpenShift File Integrity Operator - FIO 1 Unaffected: v1.3 , < * (rpm)
        cpe:/a:redhat:openshift_file_integrity_operator:1::el9
    Create a notification for this product.
    Red Hat Red Hat Discovery 2 Unaffected: 2.0.1-1754478727 , < * (rpm)
        cpe:/a:redhat:discovery:2::el9
    Create a notification for this product.
    Red Hat Red Hat Hardened Images Unaffected: 2.15.3-0.1.hum1 , < * (rpm)
        cpe:/a:redhat:hummingbird:1
    Create a notification for this product.
    Red Hat Red Hat Insights proxy 1.5 Unaffected: 1.5.5-1754504343 , < * (rpm)
        cpe:/a:redhat:insights_proxy:1.5::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559657 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559845 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559691 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559660 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559663 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754569861 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559846 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat OpenShift distributed tracing 3.5.1 Unaffected: rhosdt-3.5-1754559651 , < * (rpm)
        cpe:/a:redhat:openshift_distributed_tracing:3.5::el8
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Siemens RUGGEDCOM ROX MX5000 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX MX5000RE Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1400 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1500 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1501 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1510 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1511 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1512 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1524 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX1536 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens RUGGEDCOM ROX RX5000 Affected: 0 , < V2.17.1 (custom)
    Create a notification for this product.
    Siemens SIMATIC CN 4100 Affected: 0 , < V5.0 (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 TM MFP - GNU/Linux subsystem Affected: 0 , < * (custom)
    Create a notification for this product.
    Siemens SIPLUS S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Date Public
    2025-07-10 00:00
    Credits
    Red Hat would like to thank Sergei Glazunov (Google Project Zero) for reporting this issue.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-7425",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-07-10T15:21:27.766014Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-07-10T15:21:30.858Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2025-11-04T21:14:55.508Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "https://lists.debian.org/debian-lts-announce/2025/09/msg00035.html"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Aug/0"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/37"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/35"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/32"
              },
              {
                "url": "http://seclists.org/fulldisclosure/2025/Jul/30"
              },
              {
                "url": "http://www.openwall.com/lists/oss-security/2025/07/11/2"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX MX5000",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX MX5000RE",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1400",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1500",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1501",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1510",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1511",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1512",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1524",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX1536",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM ROX RX5000",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V2.17.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC CN 4100",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V5.0",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 TM MFP - GNU/Linux subsystem",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T12:02:33.327Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-265688.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-577017.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-032379.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://gitlab.gnome.org/GNOME/libxml2/",
              "defaultStatus": "unaffected",
              "packageName": "libxml2",
              "product": "libxml2",
              "vendor": "GNOME",
              "versions": [
                {
                  "lessThan": "2.15.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.12.5-8.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libxslt",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:1.1.39-8.el10_0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:rhel_els:7"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.1-6.el7_9.12",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-21.el8_10.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:8::appstream",
                "cpe:/o:redhat:enterprise_linux:8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-21.el8_10.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.2::appstream",
                "cpe:/o:redhat:rhel_aus:8.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-9.el8_2.4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.4::appstream",
                "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-9.el8_4.7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.4::appstream",
                "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream",
                "cpe:/o:redhat:rhel_aus:8.4::baseos",
                "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-9.el8_4.7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-13.el8_6.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-13.el8_6.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_aus:8.6::appstream",
                "cpe:/a:redhat:rhel_e4s:8.6::appstream",
                "cpe:/a:redhat:rhel_tus:8.6::appstream",
                "cpe:/o:redhat:rhel_aus:8.6::baseos",
                "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                "cpe:/o:redhat:rhel_tus:8.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-13.el8_6.11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-16.el8_8.10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:8.8::appstream",
                "cpe:/a:redhat:rhel_tus:8.8::appstream",
                "cpe:/o:redhat:rhel_e4s:8.8::baseos",
                "cpe:/o:redhat:rhel_tus:8.8::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.7-16.el8_8.10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-11.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-11.el9_6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.0::appstream",
                "cpe:/o:redhat:rhel_e4s:9.0::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-1.el9_0.6",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-3.el9_2.8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:2.9.13-11.el9_4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.12::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.12",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "412.86.202509030110-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202509030117-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202508270040-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202508192014-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202508261955-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202508141510-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202508261658-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202508271124-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:webterminal:1.11::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "web-terminal/web-terminal-rhel9-operator",
              "product": "Red Hat Web Terminal 1.11 on RHEL 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.11-19",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:webterminal:1.11::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "web-terminal/web-terminal-tooling-rhel9",
              "product": "Red Hat Web Terminal 1.11 on RHEL 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.11-8",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:webterminal:1.12::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "web-terminal/web-terminal-tooling-rhel9",
              "product": "Red Hat Web Terminal 1.12 on RHEL 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.12-4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-data-index-ephemeral-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-data-index-postgresql-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-db-migrator-tool-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-jobs-service-ephemeral-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-jobs-service-postgresql-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-10",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-4",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-management-console-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-9",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-operator-bundle",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-12",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-rhel8-operator",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-18",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-swf-builder-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-11",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_serverless:1.36::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "openshift-serverless-1/logic-swf-devmode-rhel8",
              "product": "RHOSS-1.36-RHEL-8",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.36.0-7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:cert_manager:1.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "cert-manager/jetstack-cert-manager-rhel9",
              "product": "cert-manager operator for Red Hat OpenShift 1.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "v1.16.5-1760515757",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_compliance_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-compliance-must-gather-rhel8",
              "product": "OpenShift Compliance Operator 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.8.0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_compliance_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-compliance-openscap-rhel8",
              "product": "OpenShift Compliance Operator 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.8.0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_compliance_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-compliance-rhel8-operator",
              "product": "OpenShift Compliance Operator 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.8.0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_file_integrity_operator:1::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "compliance/openshift-file-integrity-rhel8-operator",
              "product": "OpenShift File Integrity Operator - FIO 1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "v1.3",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:discovery:2::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "discovery/discovery-server-rhel9",
              "product": "Red Hat Discovery 2",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.0.1-1754478727",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:hummingbird:1"
              ],
              "defaultStatus": "affected",
              "packageName": "libxml2-main",
              "product": "Red Hat Hardened Images",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "2.15.3-0.1.hum1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:insights_proxy:1.5::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "insights-proxy/insights-proxy-container-rhel9",
              "product": "Red Hat Insights proxy 1.5",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "1.5.5-1754504343",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-agent-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559657",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-all-in-one-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559845",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-collector-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559691",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-es-index-cleaner-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559660",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-es-rollover-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559663",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-ingester-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559657",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-operator-bundle",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754569861",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-query-rhel8",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559846",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://catalog.redhat.com/software/containers/",
              "cpes": [
                "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8"
              ],
              "defaultStatus": "affected",
              "packageName": "rhosdt/jaeger-rhel8-operator",
              "product": "Red Hat OpenShift distributed tracing 3.5.1",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "rhosdt-3.5-1754559651",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libxslt",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Red Hat would like to thank Sergei Glazunov (Google Project Zero) for reporting this issue."
            }
          ],
          "datePublic": "2025-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Important"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T20:46:23.255Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHBA-2025:12345",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHBA-2025:12345"
            },
            {
              "name": "RHSA-2025:12447",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:12447"
            },
            {
              "name": "RHSA-2025:12450",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:12450"
            },
            {
              "name": "RHSA-2025:13267",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13267"
            },
            {
              "name": "RHSA-2025:13308",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13308"
            },
            {
              "name": "RHSA-2025:13309",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13309"
            },
            {
              "name": "RHSA-2025:13310",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13310"
            },
            {
              "name": "RHSA-2025:13311",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13311"
            },
            {
              "name": "RHSA-2025:13312",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13312"
            },
            {
              "name": "RHSA-2025:13313",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13313"
            },
            {
              "name": "RHSA-2025:13314",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13314"
            },
            {
              "name": "RHSA-2025:13335",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13335"
            },
            {
              "name": "RHSA-2025:13464",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13464"
            },
            {
              "name": "RHSA-2025:13622",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:13622"
            },
            {
              "name": "RHSA-2025:14059",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14059"
            },
            {
              "name": "RHSA-2025:14396",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14396"
            },
            {
              "name": "RHSA-2025:14818",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14818"
            },
            {
              "name": "RHSA-2025:14819",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14819"
            },
            {
              "name": "RHSA-2025:14853",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14853"
            },
            {
              "name": "RHSA-2025:14858",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:14858"
            },
            {
              "name": "RHSA-2025:15308",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15308"
            },
            {
              "name": "RHSA-2025:15672",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15672"
            },
            {
              "name": "RHSA-2025:15827",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15827"
            },
            {
              "name": "RHSA-2025:15828",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:15828"
            },
            {
              "name": "RHSA-2025:18219",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:18219"
            },
            {
              "name": "RHSA-2025:21885",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21885"
            },
            {
              "name": "RHSA-2025:21913",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:21913"
            },
            {
              "name": "RHSA-2026:0934",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0934"
            },
            {
              "name": "RHSA-2026:11503",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:11503"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-7425"
            },
            {
              "name": "RHBZ#2379274",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
            },
            {
              "url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-07-10T09:37:28.172Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-07-10T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libxslt: libxml2: heap use-after-free in libxslt caused by atype corruption in xmlattrptr",
          "workarounds": [
            {
              "lang": "en",
              "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
            }
          ],
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-416: Use After Free"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-7425",
        "datePublished": "2025-07-10T13:53:37.295Z",
        "dateReserved": "2025-07-10T08:44:06.287Z",
        "dateUpdated": "2026-06-29T20:46:23.255Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-5987 (GCVE-0-2025-5987)

    Vulnerability from cvelistv5 – Published: 2025-07-07 14:24 – Updated: 2026-06-30 10:40
    VLAI
    Title
    Libssh: invalid return code for chacha20 poly1305 with openssl backend
    Summary
    A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resulting in libssh not properly detecting the error returned by the OpenSSL library. This issue can lead to undefined behavior, including compromised data confidentiality and integrity or crashes.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-393 - Return of Wrong Status Code
    Assigner
    References
    URL Tags
    https://access.redhat.com/errata/RHSA-2025:23483 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2025:23484 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0427 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0428 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0430 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0431 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0702 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0978 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0980 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0985 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:0996 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1539 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:1541 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/errata/RHSA-2026:3415 vendor-advisoryx_refsource_REDHAT
    https://access.redhat.com/security/cve/CVE-2025-5987 vdb-entryx_refsource_REDHAT
    https://bugzilla.redhat.com/show_bug.cgi?id=2376219 issue-trackingx_refsource_REDHAT
    https://www.libssh.org/security/advisories/CVE-20…
    Impacted products
    Vendor Product Version
    Affected: 0.10.0 , < 0.11.2 (semver)
    Red Hat Red Hat Enterprise Linux 10 Unaffected: 0:0.11.1-5.el10_1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux:10.1
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 10.0 Extended Update Support Unaffected: 0:0.11.1-4.el10_0.1 , < * (rpm)
        cpe:/o:redhat:enterprise_linux_eus:10.0
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9 Unaffected: 0:0.10.4-17.el9_7 , < * (rpm)
        cpe:/a:redhat:enterprise_linux:9::appstream
        cpe:/o:redhat:enterprise_linux:9::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Unaffected: 0:0.10.4-9.el9_2.2 , < * (rpm)
        cpe:/a:redhat:rhel_e4s:9.2::appstream
        cpe:/o:redhat:rhel_e4s:9.2::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Unaffected: 0:0.10.4-13.el9_4.2 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.4::appstream
        cpe:/o:redhat:rhel_eus:9.4::baseos
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 9.6 Extended Update Support Unaffected: 0:0.10.4-15.el9_6.1 , < * (rpm)
        cpe:/a:redhat:rhel_eus:9.6::appstream
        cpe:/o:redhat:rhel_eus:9.6::baseos
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.13 Unaffected: 413.92.202602240113-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.13::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.14 Unaffected: 414.92.202601191325-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.14::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.15 Unaffected: 415.92.202601271320-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.15::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.16 Unaffected: 416.94.202601160124-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.16::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.17 Unaffected: 417.94.202601120213-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.17::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.18 Unaffected: 418.94.202601202224-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.18::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.19 Unaffected: 4.19.9.6.202601260820-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.19::el9
    Create a notification for this product.
    Red Hat Red Hat OpenShift Container Platform 4.20 Unaffected: 4.20.9.6.202601211057-0 , < * (rpm)
        cpe:/a:redhat:openshift:4.20::el9
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 6     cpe:/o:redhat:enterprise_linux:6
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 7     cpe:/o:redhat:enterprise_linux:7
    Create a notification for this product.
    Red Hat Red Hat Enterprise Linux 8     cpe:/o:redhat:enterprise_linux:8
    Create a notification for this product.
    Date Public
    2025-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-5987",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-22T04:55:55.619672Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T18:27:55.575Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.libssh.org/",
              "defaultStatus": "unaffected",
              "packageName": "libssh",
              "versions": [
                {
                  "lessThan": "0.11.2",
                  "status": "affected",
                  "version": "0.10.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:10.1"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 10",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.1-5.el10_1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux_eus:10.0"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.11.1-4.el10_0.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-17.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:enterprise_linux:9::appstream",
                "cpe:/o:redhat:enterprise_linux:9::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-17.el9_7",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_e4s:9.2::appstream",
                "cpe:/o:redhat:rhel_e4s:9.2::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-9.el9_2.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.4::appstream",
                "cpe:/o:redhat:rhel_eus:9.4::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-13.el9_4.2",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:rhel_eus:9.6::appstream",
                "cpe:/o:redhat:rhel_eus:9.6::baseos"
              ],
              "defaultStatus": "affected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "0:0.10.4-15.el9_6.1",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.13::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.13",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "413.92.202602240113-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.14::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.14",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "414.92.202601191325-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.15::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.15",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "415.92.202601271320-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.16::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.16",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "416.94.202601160124-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.17::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.17",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "417.94.202601120213-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.18::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.18",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "418.94.202601202224-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.19::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.19",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.19.9.6.202601260820-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/a:redhat:openshift:4.20::el9"
              ],
              "defaultStatus": "affected",
              "packageName": "rhcos",
              "product": "Red Hat OpenShift Container Platform 4.20",
              "vendor": "Red Hat",
              "versions": [
                {
                  "lessThan": "*",
                  "status": "unaffected",
                  "version": "4.20.9.6.202601211057-0",
                  "versionType": "rpm"
                }
              ]
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:6"
              ],
              "defaultStatus": "unknown",
              "packageName": "libssh2",
              "product": "Red Hat Enterprise Linux 6",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:7"
              ],
              "defaultStatus": "unknown",
              "packageName": "libssh2",
              "product": "Red Hat Enterprise Linux 7",
              "vendor": "Red Hat"
            },
            {
              "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
              "cpes": [
                "cpe:/o:redhat:enterprise_linux:8"
              ],
              "defaultStatus": "unaffected",
              "packageName": "libssh",
              "product": "Red Hat Enterprise Linux 8",
              "vendor": "Red Hat"
            }
          ],
          "datePublic": "2025-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resulting in libssh not properly detecting the error returned by the OpenSSL library. This issue can lead to undefined behavior, including compromised data confidentiality and integrity or crashes."
            }
          ],
          "metrics": [
            {
              "other": {
                "content": {
                  "namespace": "https://access.redhat.com/security/updates/classification/",
                  "value": "Moderate"
                },
                "type": "Red Hat severity rating"
              }
            },
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-393",
                  "description": "Return of Wrong Status Code",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T10:40:14.322Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2025:23483",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23483"
            },
            {
              "name": "RHSA-2025:23484",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2025:23484"
            },
            {
              "name": "RHSA-2026:0427",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0427"
            },
            {
              "name": "RHSA-2026:0428",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0428"
            },
            {
              "name": "RHSA-2026:0430",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0430"
            },
            {
              "name": "RHSA-2026:0431",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0431"
            },
            {
              "name": "RHSA-2026:0702",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0702"
            },
            {
              "name": "RHSA-2026:0978",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0978"
            },
            {
              "name": "RHSA-2026:0980",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0980"
            },
            {
              "name": "RHSA-2026:0985",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0985"
            },
            {
              "name": "RHSA-2026:0996",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:0996"
            },
            {
              "name": "RHSA-2026:1539",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1539"
            },
            {
              "name": "RHSA-2026:1541",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:1541"
            },
            {
              "name": "RHSA-2026:3415",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2026:3415"
            },
            {
              "tags": [
                "vdb-entry",
                "x_refsource_REDHAT"
              ],
              "url": "https://access.redhat.com/security/cve/CVE-2025-5987"
            },
            {
              "name": "RHBZ#2376219",
              "tags": [
                "issue-tracking",
                "x_refsource_REDHAT"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2376219"
            },
            {
              "url": "https://www.libssh.org/security/advisories/CVE-2025-5987.txt"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-07-03T21:55:26.394Z",
              "value": "Reported to Red Hat."
            },
            {
              "lang": "en",
              "time": "2025-04-26T00:00:00.000Z",
              "value": "Made public."
            }
          ],
          "title": "Libssh: invalid return code for chacha20 poly1305 with openssl backend",
          "x_generator": {
            "engine": "cvelib 1.8.0"
          },
          "x_redhatCweChain": "CWE-393: Return of Wrong Status Code"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2025-5987",
        "datePublished": "2025-07-07T14:24:12.576Z",
        "dateReserved": "2025-06-10T21:55:45.552Z",
        "dateUpdated": "2026-06-30T10:40:14.322Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }