Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-1394 (GCVE-0-2024-1394)
Vulnerability from cvelistv5 – Published: 2024-03-21 12:16 – Updated: 2026-04-23 01:32
VLAI
EPSS
Title
Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads
Summary
A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the "return nil, nil, fail(...)" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.
Severity
7.5 (High)
CWE
- CWE-401 - Missing Release of Memory after Effective Lifetime
Assigner
References
46 references
Impacted products
149 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 8 |
Unaffected:
0:1.4.5-1.el8ap , < *
(rpm)
cpe:/a:redhat:ansible_automation_platform:2.4::el8 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8 cpe:/a:redhat:ansible_automation_platform:2.4::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 9 |
Unaffected:
0:1.4.5-1.el9ap , < *
(rpm)
cpe:/a:redhat:ansible_automation_platform:2.4::el8 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8 cpe:/a:redhat:ansible_automation_platform:2.4::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9 |
|
| Red Hat | Red Hat Developer Tools |
Unaffected:
0:1.19.13-6.el7_9 , < *
(rpm)
cpe:/a:redhat:devtools:2023::el7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8090020240313170136.26eb71ac , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
0:5.1.1-2.el8_9 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
0:9.2.10-8.el8_9 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
0:9.2.10-16.el8_10 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8100020240808093819.afee755d , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
0:101-2.el8_10 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:1.20.12-2.el9_3 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:9.2.10-8.el9_3 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:5.1.1-2.el9_3 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:1.21.9-2.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:9.2.10-16.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:5.1.1-2.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
2:1.33.7-3.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
4:4.9.4-5.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
6:0.7.3-4.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
2:1.14.3-3.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
1:1.4.0-4.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
4:1.1.12-3.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:132-1.el9 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions |
Unaffected:
2:4.2.0-4.el9_0 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:9.0::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions |
Unaffected:
1:1.0.1-6.el9_0 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:9.0::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support |
Unaffected:
0:1.19.13-7.el9_2 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support |
Unaffected:
2:4.4.1-20.el9_2 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.2::appstream |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
1:1.23.4-5.2.rhaos4.12.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
0:0.16.0-2.2.rhaos4.12.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
1:1.4.0-1.1.rhaos4.12.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
0:1.25.3-5.2.rhaos4.12.git44a2cb2.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
0:1.25.0-2.2.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
0:2.14.0-5.2.rhaos4.12.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
0:4.12.0-202403251017.p0.gd4c9e3c.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
3:4.2.0-7.2.rhaos4.12.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
3:1.1.6-5.2.rhaos4.12.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
2:1.9.4-3.2.rhaos4.12.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.12::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
1:1.29.1-2.2.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
1:1.4.0-1.1.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
0:1.26.5-11.1.rhaos4.13.git919cc6e.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
0:1.26.0-4.1.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
0:2.15.0-7.1.rhaos4.13.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
0:4.13.0-202404020737.p0.gd192e90.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
3:4.4.1-5.2.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
4:1.1.12-1.1.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
2:1.11.2-2.2.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:0.19.0-1.3.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
1:1.4.0-1.2.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:1.27.4-6.1.rhaos4.14.gitd09e4c0.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:1.27.0-3.1.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:2.16.2-2.1.rhaos4.14.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202403261640.p0.gf7b14a9.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202403251040.p0.g607e2dd.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
3:4.4.1-11.3.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
2:1.11.2-10.3.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
1:1.29.1-10.4.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:0.19.0-1.4.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
3:2.1.7-3.4.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
1:1.4.0-1.3.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:1.27.4-7.2.rhaos4.14.git082c52f.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:1.27.0-3.2.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:2.16.2-2.2.rhaos4.14.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202404160939.p0.g7bee54d.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202404151639.p0.gd2acdd5.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202404151639.p0.g81558cc.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202404151639.p0.gf7b14a9.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202404151639.p0.g8926a29.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.0-202404151639.p0.g607e2dd.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
3:4.4.1-11.4.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
4:1.1.12-1.2.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
2:1.11.2-10.4.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
0:4.14.19-202403280926.p0.gc1f8861.assembly.4.14.19.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
414.92.202407300859-0 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
1:1.29.1-20.3.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:0.20.0-1.1.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
1:1.4.0-1.2.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:1.28.4-8.rhaos4.15.git24f50b9.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:1.28.0-3.1.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:2.16.2-2.1.rhaos4.15.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:4.15.0-202403211240.p0.g62c4d45.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:4.15.0-202403211549.p0.g2e3cca1.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
3:4.4.1-21.1.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
4:1.1.12-1.1.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
2:1.11.2-21.2.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
0:4.15.6-202403280951.p0.g94b1c2a.assembly.4.15.6.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
415.92.202407191425-0 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
Unaffected:
0:3.3.23-16.el8ost , < *
(rpm)
cpe:/a:redhat:openstack:16.2::el8 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 for RHEL 8 |
Unaffected:
0:0.2.1-3.el8ost , < *
(rpm)
cpe:/a:redhat:openstack:17.1::el8 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 for RHEL 9 |
Unaffected:
0:3.4.26-8.el9ost , < *
(rpm)
cpe:/a:redhat:openstack:17.1::el9 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 for RHEL 9 |
Unaffected:
0:0.2.1-3.el9ost , < *
(rpm)
cpe:/a:redhat:openstack:17.1::el9 |
|
| Red Hat | RHODF-4.16-RHEL-9 |
Unaffected:
v4.16.0-137 , < *
(rpm)
cpe:/a:redhat:openshift_data_foundation:4.16::el9 |
|
| Red Hat | RHODF-4.16-RHEL-9 |
Unaffected:
v4.16.0-38 , < *
(rpm)
cpe:/a:redhat:openshift_data_foundation:4.16::el9 |
|
| Red Hat | NBDE Tang Server |
cpe:/a:redhat:network_bound_disk_encryption_tang:1 |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | Red Hat Ansible Automation Platform 1.2 |
cpe:/a:redhat:ansible_automation_platform |
|
| Red Hat | Red Hat Ansible Automation Platform 1.2 |
cpe:/a:redhat:ansible_automation_platform |
|
| Red Hat | Red Hat Certification for Red Hat Enterprise Linux 8 |
cpe:/a:redhat:certifications:1::el8 |
|
| Red Hat | Red Hat Certification Program for Red Hat Enterprise Linux 9 |
cpe:/a:redhat:certifications:9 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat Openshift Container Storage 4 |
cpe:/a:redhat:openshift_container_storage:4 |
|
| Red Hat | Red Hat OpenShift Dev Spaces |
cpe:/a:redhat:openshift_devspaces:3 |
|
| Red Hat | Red Hat OpenShift GitOps |
cpe:/a:redhat:openshift_gitops:1 |
|
| Red Hat | Red Hat OpenShift on AWS |
cpe:/a:redhat:openshift_service_on_aws:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.1 |
cpe:/a:redhat:openstack:16.1 |
|
| Red Hat | Red Hat OpenStack Platform 16.1 |
cpe:/a:redhat:openstack:16.1 |
|
| Red Hat | Red Hat OpenStack Platform 16.1 |
cpe:/a:redhat:openstack:16.1 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 |
|
| Red Hat | Red Hat OpenStack Platform 18.0 |
cpe:/a:redhat:openstack:18.0 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Software Collections |
cpe:/a:redhat:rhel_software_collections:3 |
|
| Red Hat | Red Hat Storage 3 |
cpe:/a:redhat:storage:3 |
Date Public
2024-03-20 00:00
Credits
Red Hat would like to thank @qmuntal and @r3kumar for reporting this issue.
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-1394",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-03-21T18:21:05.099385Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-05T13:50:55.732Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T18:40:20.583Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2024:1462",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1462"
},
{
"name": "RHSA-2024:1468",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1468"
},
{
"name": "RHSA-2024:1472",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1472"
},
{
"name": "RHSA-2024:1501",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1501"
},
{
"name": "RHSA-2024:1502",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1502"
},
{
"name": "RHSA-2024:1561",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1561"
},
{
"name": "RHSA-2024:1563",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1563"
},
{
"name": "RHSA-2024:1566",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1566"
},
{
"name": "RHSA-2024:1567",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1567"
},
{
"name": "RHSA-2024:1574",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1574"
},
{
"name": "RHSA-2024:1640",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1640"
},
{
"name": "RHSA-2024:1644",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1644"
},
{
"name": "RHSA-2024:1646",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1646"
},
{
"name": "RHSA-2024:1763",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1763"
},
{
"name": "RHSA-2024:1897",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1897"
},
{
"name": "RHSA-2024:2562",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2562"
},
{
"name": "RHSA-2024:2568",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2568"
},
{
"name": "RHSA-2024:2569",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2569"
},
{
"name": "RHSA-2024:2729",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2729"
},
{
"name": "RHSA-2024:2730",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2730"
},
{
"name": "RHSA-2024:2767",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2767"
},
{
"name": "RHSA-2024:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3265"
},
{
"name": "RHSA-2024:3352",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3352"
},
{
"name": "RHSA-2024:4146",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4146"
},
{
"name": "RHSA-2024:4371",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4371"
},
{
"name": "RHSA-2024:4378",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4378"
},
{
"name": "RHSA-2024:4379",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4379"
},
{
"name": "RHSA-2024:4502",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4502"
},
{
"name": "RHSA-2024:4581",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4581"
},
{
"name": "RHSA-2024:4591",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"name": "RHSA-2024:4672",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4672"
},
{
"name": "RHSA-2024:4699",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4699"
},
{
"name": "RHSA-2024:4761",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4761"
},
{
"name": "RHSA-2024:4762",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4762"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"name": "RHBZ#2262921",
"tags": [
"issue-tracking",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"tags": [
"x_transferred"
],
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"tags": [
"x_transferred"
],
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9"
],
"defaultStatus": "affected",
"packageName": "receptor",
"product": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.4.5-1.el8ap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9"
],
"defaultStatus": "affected",
"packageName": "receptor",
"product": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.4.5-1.el9ap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:devtools:2023::el7"
],
"defaultStatus": "affected",
"packageName": "go-toolset-1.19-golang",
"product": "Red Hat Developer Tools",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.19.13-6.el7_9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "go-toolset:rhel8",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8090020240313170136.26eb71ac",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana-pcp",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.1-2.el8_9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.2.10-8.el8_9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.2.10-16.el8_10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:rhel8",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020240808093819.afee755d",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "osbuild-composer",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:101-2.el8_10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "golang",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.20.12-2.el9_3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.2.10-8.el9_3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana-pcp",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.1-2.el9_3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "golang",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.21.9-2.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.2.10-16.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "grafana-pcp",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.1-2.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.33.7-3.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:4.9.4-5.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "gvisor-tap-vsock",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "6:0.7.3-4.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.14.3-3.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.4.0-4.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "runc",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:1.1.12-3.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "osbuild-composer",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:132-1.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.0::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:4.2.0-4.el9_0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.0::appstream"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.0.1-6.el9_0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "golang",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.19.13-7.el9_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:4.4.1-20.el9_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.23.4-5.2.rhaos4.12.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "butane",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.16.0-2.2.rhaos4.12.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.4.0-1.1.rhaos4.12.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "cri-o",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.25.3-5.2.rhaos4.12.git44a2cb2.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "cri-tools",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.25.0-2.2.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "ignition",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.14.0-5.2.rhaos4.12.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.12.0-202403251017.p0.gd4c9e3c.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.2.0-7.2.rhaos4.12.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "runc",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:1.1.6-5.2.rhaos4.12.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9",
"cpe:/a:redhat:openshift:4.12::el8"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.9.4-3.2.rhaos4.12.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.29.1-2.2.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.4.0-1.1.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "cri-o",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.26.5-11.1.rhaos4.13.git919cc6e.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "cri-tools",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.26.0-4.1.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "ignition",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.15.0-7.1.rhaos4.13.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.13.0-202404020737.p0.gd192e90.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-5.2.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "runc",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:1.1.12-1.1.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.2-2.2.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "butane",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.19.0-1.3.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.4.0-1.2.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "cri-o",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.27.4-6.1.rhaos4.14.gitd09e4c0.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "cri-tools",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.27.0-3.1.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "ignition",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.16.2-2.1.rhaos4.14.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202403261640.p0.gf7b14a9.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "ose-aws-ecr-image-credential-provider",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202403251040.p0.g607e2dd.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-11.3.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.2-10.3.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.29.1-10.4.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "butane",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.19.0-1.4.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "conmon",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:2.1.7-3.4.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.4.0-1.3.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "cri-o",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.27.4-7.2.rhaos4.14.git082c52f.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "cri-tools",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.27.0-3.2.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "ignition",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.16.2-2.2.rhaos4.14.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202404160939.p0.g7bee54d.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4-aws-iso",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202404151639.p0.gd2acdd5.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift-ansible",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202404151639.p0.g81558cc.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202404151639.p0.gf7b14a9.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift-kuryr",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202404151639.p0.g8926a29.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "ose-aws-ecr-image-credential-provider",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.0-202404151639.p0.g607e2dd.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-11.4.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "runc",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:1.1.12-1.2.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.2-10.4.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "microshift",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.14.19-202403280926.p0.gc1f8861.assembly.4.14.19.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "414.92.202407300859-0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.29.1-20.3.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "butane",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.20.0-1.1.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "containernetworking-plugins",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.4.0-1.2.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "cri-o",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.28.4-8.rhaos4.15.git24f50b9.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "cri-tools",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.28.0-3.1.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "ignition",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.16.2-2.1.rhaos4.15.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.15.0-202403211240.p0.g62c4d45.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "ose-aws-ecr-image-credential-provider",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.15.0-202403211549.p0.g2e3cca1.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-21.1.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "runc",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:1.1.12-1.1.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.2-21.2.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "microshift",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.15.6-202403280951.p0.g94b1c2a.assembly.4.15.6.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "415.92.202407191425-0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.2::el8"
],
"defaultStatus": "affected",
"packageName": "etcd",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.3.23-16.el8ost",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:17.1::el8"
],
"defaultStatus": "affected",
"packageName": "collectd-sensubility",
"product": "Red Hat OpenStack Platform 17.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.2.1-3.el8ost",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:17.1::el9"
],
"defaultStatus": "affected",
"packageName": "etcd",
"product": "Red Hat OpenStack Platform 17.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.4.26-8.el9ost",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:17.1::el9"
],
"defaultStatus": "affected",
"packageName": "collectd-sensubility",
"product": "Red Hat OpenStack Platform 17.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.2.1-3.el9ost",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "odf4/mcg-operator-bundle",
"product": "RHODF-4.16-RHEL-9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.16.0-137",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "odf4/mcg-rhel9-operator",
"product": "RHODF-4.16-RHEL-9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.16.0-38",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:network_bound_disk_encryption_tang:1"
],
"defaultStatus": "affected",
"packageName": "tang-operator-bundle-container",
"product": "NBDE Tang Server",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"packageName": "helm",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"packageName": "odo",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "unaffected",
"packageName": "openshift-pipelines-client",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"packageName": "openshift-serverless-clients",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform"
],
"defaultStatus": "affected",
"packageName": "helm",
"product": "Red Hat Ansible Automation Platform 1.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat Ansible Automation Platform 1.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:certifications:1::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-certification-preflight",
"product": "Red Hat Certification for Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"packageName": "redhat-certification-preflight",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "containernetworking-plugins",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "host-metering",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "rhc-worker-script",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "skopeo",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/buildah",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/conmon",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/containernetworking-plugins",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/podman",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/runc",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/skopeo",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/toolbox",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "git-lfs",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "rhc",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "weldr-client",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "butane",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"packageName": "conmon",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"packageName": "git-lfs",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "ignition",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"packageName": "toolbox",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"packageName": "weldr-client",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "conmon-rs",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "golang-github-prometheus-promu",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "lifecycle-agent-operator-bundle-container",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unknown",
"packageName": "openshift4/bare-metal-event-relay-operator-bundle",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "openshift4/numaresources-operator-bundle",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "openshift4/ose-cluster-machine-approver-rhel9",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_container_storage:4"
],
"defaultStatus": "unknown",
"packageName": "mcg",
"product": "Red Hat Openshift Container Storage 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3"
],
"defaultStatus": "affected",
"packageName": "devspaces/machineexec-rhel8",
"product": "Red Hat OpenShift Dev Spaces",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_gitops:1"
],
"defaultStatus": "affected",
"packageName": "openshift-gitops-1/gitops-operator-bundle",
"product": "Red Hat OpenShift GitOps",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_service_on_aws:1"
],
"defaultStatus": "affected",
"packageName": "rosa",
"product": "Red Hat OpenShift on AWS",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "unaffected",
"packageName": "kubevirt",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.1"
],
"defaultStatus": "unknown",
"packageName": "etcd",
"product": "Red Hat OpenStack Platform 16.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.1"
],
"defaultStatus": "affected",
"packageName": "golang-qpid-apache",
"product": "Red Hat OpenStack Platform 16.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.1"
],
"defaultStatus": "unaffected",
"packageName": "qpid-proton",
"product": "Red Hat OpenStack Platform 16.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"packageName": "golang-github-infrawatch-apputils",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"packageName": "golang-qpid-apache",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "unaffected",
"packageName": "qpid-proton",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:17.1"
],
"defaultStatus": "affected",
"packageName": "golang-github-infrawatch-apputils",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:17.1"
],
"defaultStatus": "affected",
"packageName": "golang-qpid-apache",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:17.1"
],
"defaultStatus": "unaffected",
"packageName": "qpid-proton",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "affected",
"packageName": "etcd",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "affected",
"packageName": "qpid-proton",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "affected",
"packageName": "skupper-cli",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "affected",
"packageName": "skupper-router",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_software_collections:3"
],
"defaultStatus": "unaffected",
"packageName": "rh-git227-git-lfs",
"product": "Red Hat Software Collections",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:storage:3"
],
"defaultStatus": "unknown",
"packageName": "heketi",
"product": "Red Hat Storage 3",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank @qmuntal and @r3kumar for reporting this issue."
}
],
"datePublic": "2024-03-20T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-401",
"description": "Missing Release of Memory after Effective Lifetime",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-23T01:32:06.267Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:1462",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1462"
},
{
"name": "RHSA-2024:1468",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1468"
},
{
"name": "RHSA-2024:1472",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1472"
},
{
"name": "RHSA-2024:1501",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1501"
},
{
"name": "RHSA-2024:1502",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1502"
},
{
"name": "RHSA-2024:1561",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1561"
},
{
"name": "RHSA-2024:1563",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1563"
},
{
"name": "RHSA-2024:1566",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1566"
},
{
"name": "RHSA-2024:1567",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1567"
},
{
"name": "RHSA-2024:1574",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1574"
},
{
"name": "RHSA-2024:1640",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1640"
},
{
"name": "RHSA-2024:1644",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1644"
},
{
"name": "RHSA-2024:1646",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1646"
},
{
"name": "RHSA-2024:1763",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1763"
},
{
"name": "RHSA-2024:1897",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:1897"
},
{
"name": "RHSA-2024:2562",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2562"
},
{
"name": "RHSA-2024:2568",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2568"
},
{
"name": "RHSA-2024:2569",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2569"
},
{
"name": "RHSA-2024:2729",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2729"
},
{
"name": "RHSA-2024:2730",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2730"
},
{
"name": "RHSA-2024:2767",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2767"
},
{
"name": "RHSA-2024:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3265"
},
{
"name": "RHSA-2024:3352",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3352"
},
{
"name": "RHSA-2024:4146",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4146"
},
{
"name": "RHSA-2024:4371",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4371"
},
{
"name": "RHSA-2024:4378",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4378"
},
{
"name": "RHSA-2024:4379",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4379"
},
{
"name": "RHSA-2024:4502",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4502"
},
{
"name": "RHSA-2024:4581",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4581"
},
{
"name": "RHSA-2024:4591",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"name": "RHSA-2024:4672",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4672"
},
{
"name": "RHSA-2024:4699",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4699"
},
{
"name": "RHSA-2024:4761",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4761"
},
{
"name": "RHSA-2024:4762",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4762"
},
{
"name": "RHSA-2024:4960",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4960"
},
{
"name": "RHSA-2024:5258",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:5258"
},
{
"name": "RHSA-2024:5634",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:5634"
},
{
"name": "RHSA-2024:7262",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7262"
},
{
"name": "RHSA-2025:7118",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:7118"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"name": "RHBZ#2262921",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-02-06T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2024-03-20T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-401: Missing Release of Memory after Effective Lifetime"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2024-1394",
"datePublished": "2024-03-21T12:16:38.790Z",
"dateReserved": "2024-02-09T06:02:35.056Z",
"dateUpdated": "2026-04-23T01:32:06.267Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-1394",
"date": "2026-05-29",
"epss": "0.01379",
"percentile": "0.8057"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-1394\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-03-21T13:00:08.037\",\"lastModified\":\"2025-05-13T09:15:19.360\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \\\"return nil, nil, fail(...)\\\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla de p\u00e9rdida de memoria en Golang en el c\u00f3digo de cifrado/descifrado RSA, lo que podr\u00eda conducir a una vulnerabilidad de agotamiento de recursos mediante entradas controladas por el atacante. La p\u00e9rdida de memoria ocurre en github.com/golang-fips/openssl/openssl/rsa.go#L113. Los objetos filtrados son pkey? y ctx?. Esa funci\u00f3n utiliza par\u00e1metros de retorno con nombre para liberar pkey? y ctx? si hay un error al inicializar el contexto o al configurar las diferentes propiedades. Todas las declaraciones de devoluci\u00f3n relacionadas con casos de error siguen el patr\u00f3n \\\"return nil, nil, fail(...)\\\", lo que significa que pkey? y ctx? ser\u00e1n nulos dentro de la funci\u00f3n diferida que deber\u00eda liberarlos.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-401\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1462\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1468\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1472\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1501\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1502\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1561\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1563\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1566\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1567\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1574\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1640\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1644\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1646\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1763\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1897\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2562\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2568\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2569\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2729\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2730\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2767\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3265\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3352\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4146\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4371\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4378\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4379\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4502\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4581\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4591\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4672\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4699\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4761\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4762\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4960\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:5258\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:5634\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7262\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:7118\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-1394\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2262921\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2660\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://vuln.go.dev/ID/GO-2024-2660.json\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1462\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1468\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1472\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1501\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1502\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1563\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1566\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1567\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1574\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1640\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1644\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1646\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1763\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:1897\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2562\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2568\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2729\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2730\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2767\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3265\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3352\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4146\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4371\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4378\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4379\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4502\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4581\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4591\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4672\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4699\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4761\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4762\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-1394\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2262921\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2660\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://vuln.go.dev/ID/GO-2024-2660.json\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:1462\", \"name\": \"RHSA-2024:1462\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1468\", \"name\": \"RHSA-2024:1468\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1472\", \"name\": \"RHSA-2024:1472\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1501\", \"name\": \"RHSA-2024:1501\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1502\", \"name\": \"RHSA-2024:1502\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1561\", \"name\": \"RHSA-2024:1561\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1563\", \"name\": \"RHSA-2024:1563\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1566\", \"name\": \"RHSA-2024:1566\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1567\", \"name\": \"RHSA-2024:1567\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1574\", \"name\": \"RHSA-2024:1574\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1640\", \"name\": \"RHSA-2024:1640\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1644\", \"name\": \"RHSA-2024:1644\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1646\", \"name\": \"RHSA-2024:1646\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1763\", \"name\": \"RHSA-2024:1763\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1897\", \"name\": \"RHSA-2024:1897\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2562\", \"name\": \"RHSA-2024:2562\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2568\", \"name\": \"RHSA-2024:2568\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2569\", \"name\": \"RHSA-2024:2569\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2729\", \"name\": \"RHSA-2024:2729\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2730\", \"name\": \"RHSA-2024:2730\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2767\", \"name\": \"RHSA-2024:2767\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3265\", \"name\": \"RHSA-2024:3265\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3352\", \"name\": \"RHSA-2024:3352\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4146\", \"name\": \"RHSA-2024:4146\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4371\", \"name\": \"RHSA-2024:4371\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4378\", \"name\": \"RHSA-2024:4378\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4379\", \"name\": \"RHSA-2024:4379\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4502\", \"name\": \"RHSA-2024:4502\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4581\", \"name\": \"RHSA-2024:4581\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4591\", \"name\": \"RHSA-2024:4591\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4672\", \"name\": \"RHSA-2024:4672\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4699\", \"name\": \"RHSA-2024:4699\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4761\", \"name\": \"RHSA-2024:4761\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4762\", \"name\": \"RHSA-2024:4762\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-1394\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2262921\", \"name\": \"RHBZ#2262921\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2660\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://vuln.go.dev/ID/GO-2024-2660.json\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T18:40:20.583Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-1394\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-03-21T18:21:05.099385Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-05T13:50:36.853Z\"}}], \"cna\": {\"title\": \"Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads\", \"credits\": [{\"lang\": \"en\", \"value\": \"Red Hat would like to thank @qmuntal and @r3kumar for reporting this issue.\"}], \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9\", \"cpe:/a:redhat:ansible_automation_platform:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform:2.4::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.4 for RHEL 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.4.5-1.el8ap\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"receptor\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9\", \"cpe:/a:redhat:ansible_automation_platform:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform:2.4::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.4 for RHEL 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.4.5-1.el9ap\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"receptor\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:devtools:2023::el7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Tools\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.19.13-6.el7_9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"go-toolset-1.19-golang\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8090020240313170136.26eb71ac\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"go-toolset:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:5.1.1-2.el8_9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana-pcp\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:9.2.10-8.el8_9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:9.2.10-16.el8_10\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8100020240808093819.afee755d\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:101-2.el8_10\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"osbuild-composer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.20.12-2.el9_3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"golang\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:9.2.10-8.el9_3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:5.1.1-2.el9_3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana-pcp\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.21.9-2.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"golang\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:9.2.10-16.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:5.1.1-2.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"grafana-pcp\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.33.7-3.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:4.9.4-5.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"6:0.7.3-4.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"gvisor-tap-vsock\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.14.3-3.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.4.0-4.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:1.1.12-3.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"runc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:132-1.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"osbuild-composer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:4.2.0-4.el9_0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.0.1-6.el9_0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.2 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.19.13-7.el9_2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"golang\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.2 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:4.4.1-20.el9_2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.23.4-5.2.rhaos4.12.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:0.16.0-2.2.rhaos4.12.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"butane\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.4.0-1.1.rhaos4.12.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.25.3-5.2.rhaos4.12.git44a2cb2.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-o\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.25.0-2.2.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-tools\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.14.0-5.2.rhaos4.12.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ignition\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.12.0-202403251017.p0.gd4c9e3c.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.2.0-7.2.rhaos4.12.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:1.1.6-5.2.rhaos4.12.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"runc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el9\", \"cpe:/a:redhat:openshift:4.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.9.4-3.2.rhaos4.12.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.29.1-2.2.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.4.0-1.1.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.26.5-11.1.rhaos4.13.git919cc6e.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-o\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.26.0-4.1.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-tools\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.15.0-7.1.rhaos4.13.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ignition\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.13.0-202404020737.p0.gd192e90.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-5.2.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:1.1.12-1.1.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"runc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.2-2.2.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:0.19.0-1.3.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"butane\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.4.0-1.2.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.27.4-6.1.rhaos4.14.gitd09e4c0.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-o\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.27.0-3.1.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-tools\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.16.2-2.1.rhaos4.14.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ignition\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202403261640.p0.gf7b14a9.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202403251040.p0.g607e2dd.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ose-aws-ecr-image-credential-provider\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-11.3.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.2-10.3.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.29.1-10.4.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:0.19.0-1.4.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"butane\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:2.1.7-3.4.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.4.0-1.3.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.27.4-7.2.rhaos4.14.git082c52f.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-o\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.27.0-3.2.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-tools\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.16.2-2.2.rhaos4.14.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ignition\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202404160939.p0.g7bee54d.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202404151639.p0.gd2acdd5.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4-aws-iso\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202404151639.p0.g81558cc.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-ansible\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202404151639.p0.gf7b14a9.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202404151639.p0.g8926a29.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-kuryr\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.0-202404151639.p0.g607e2dd.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ose-aws-ecr-image-credential-provider\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-11.4.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:1.1.12-1.2.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"runc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.2-10.4.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.14.19-202403280926.p0.gc1f8861.assembly.4.14.19.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"microshift\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"414.92.202407300859-0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhcos\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.29.1-20.3.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:0.20.0-1.1.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"butane\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.4.0-1.2.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.28.4-8.rhaos4.15.git24f50b9.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-o\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.28.0-3.1.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-tools\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.16.2-2.1.rhaos4.15.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ignition\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.15.0-202403211240.p0.g62c4d45.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.15.0-202403211549.p0.g2e3cca1.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"ose-aws-ecr-image-credential-provider\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-21.1.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:1.1.12-1.1.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"runc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.2-21.2.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.15.6-202403280951.p0.g94b1c2a.assembly.4.15.6.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"microshift\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"415.92.202407191425-0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhcos\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:3.3.23-16.el8ost\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"etcd\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1 for RHEL 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:0.2.1-3.el8ost\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"collectd-sensubility\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1 for RHEL 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:3.4.26-8.el9ost\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"etcd\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1 for RHEL 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:0.2.1-3.el9ost\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"collectd-sensubility\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"RHODF-4.16-RHEL-9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.16.0-137\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"odf4/mcg-operator-bundle\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"RHODF-4.16-RHEL-9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.16.0-38\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"odf4/mcg-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_bound_disk_encryption_tang:1\"], \"vendor\": \"Red Hat\", \"product\": \"NBDE Tang Server\", \"packageName\": \"tang-operator-bundle-container\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"packageName\": \"helm\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"packageName\": \"odo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"packageName\": \"openshift-pipelines-client\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"packageName\": \"openshift-serverless-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 1.2\", \"packageName\": \"helm\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 1.2\", \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:1::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification for Red Hat Enterprise Linux 8\", \"packageName\": \"redhat-certification-preflight\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification Program for Red Hat Enterprise Linux 9\", \"packageName\": \"redhat-certification-preflight\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"host-metering\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"rhc-worker-script\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/containernetworking-plugins\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/runc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/toolbox\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"git-lfs\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"rhc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"weldr-client\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"butane\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"git-lfs\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"ignition\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"toolbox\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"weldr-client\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"conmon-rs\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"golang-github-prometheus-promu\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"lifecycle-agent-operator-bundle-container\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/bare-metal-event-relay-operator-bundle\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/numaresources-operator-bundle\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-cluster-machine-approver-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"rhcos\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_container_storage:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Container Storage 4\", \"packageName\": \"mcg\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces\", \"packageName\": \"devspaces/machineexec-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps\", \"packageName\": \"openshift-gitops-1/gitops-operator-bundle\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_service_on_aws:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift on AWS\", \"packageName\": \"rosa\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"kubevirt\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.1\", \"packageName\": \"etcd\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.1\", \"packageName\": \"golang-qpid-apache\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.1\", \"packageName\": \"qpid-proton\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"packageName\": \"golang-github-infrawatch-apputils\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"packageName\": \"golang-qpid-apache\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"packageName\": \"qpid-proton\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"packageName\": \"golang-github-infrawatch-apputils\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"packageName\": \"golang-qpid-apache\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"packageName\": \"qpid-proton\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 18.0\", \"packageName\": \"etcd\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"packageName\": \"qpid-proton\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"packageName\": \"skupper-cli\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"packageName\": \"skupper-router\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_software_collections:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Software Collections\", \"packageName\": \"rh-git227-git-lfs\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:storage:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Storage 3\", \"packageName\": \"heketi\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-02-06T00:00:00.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-03-20T00:00:00.000Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-03-20T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:1462\", \"name\": \"RHSA-2024:1462\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1468\", \"name\": \"RHSA-2024:1468\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1472\", \"name\": \"RHSA-2024:1472\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1501\", \"name\": \"RHSA-2024:1501\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1502\", \"name\": \"RHSA-2024:1502\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1561\", \"name\": \"RHSA-2024:1561\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1563\", \"name\": \"RHSA-2024:1563\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1566\", \"name\": \"RHSA-2024:1566\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1567\", \"name\": \"RHSA-2024:1567\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1574\", \"name\": \"RHSA-2024:1574\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1640\", \"name\": \"RHSA-2024:1640\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1644\", \"name\": \"RHSA-2024:1644\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1646\", \"name\": \"RHSA-2024:1646\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1763\", \"name\": \"RHSA-2024:1763\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:1897\", \"name\": \"RHSA-2024:1897\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2562\", \"name\": \"RHSA-2024:2562\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2568\", \"name\": \"RHSA-2024:2568\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2569\", \"name\": \"RHSA-2024:2569\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2729\", \"name\": \"RHSA-2024:2729\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2730\", \"name\": \"RHSA-2024:2730\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2767\", \"name\": \"RHSA-2024:2767\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3265\", \"name\": \"RHSA-2024:3265\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3352\", \"name\": \"RHSA-2024:3352\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4146\", \"name\": \"RHSA-2024:4146\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4371\", \"name\": \"RHSA-2024:4371\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4378\", \"name\": \"RHSA-2024:4378\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4379\", \"name\": \"RHSA-2024:4379\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4502\", \"name\": \"RHSA-2024:4502\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4581\", \"name\": \"RHSA-2024:4581\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4591\", \"name\": \"RHSA-2024:4591\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4672\", \"name\": \"RHSA-2024:4672\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4699\", \"name\": \"RHSA-2024:4699\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4761\", \"name\": \"RHSA-2024:4761\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4762\", \"name\": \"RHSA-2024:4762\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4960\", \"name\": \"RHSA-2024:4960\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5258\", \"name\": \"RHSA-2024:5258\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5634\", \"name\": \"RHSA-2024:5634\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7262\", \"name\": \"RHSA-2024:7262\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:7118\", \"name\": \"RHSA-2025:7118\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-1394\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2262921\", \"name\": \"RHBZ#2262921\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136\"}, {\"url\": \"https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6\"}, {\"url\": \"https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2660\"}, {\"url\": \"https://vuln.go.dev/ID/GO-2024-2660.json\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\\u200b and ctx\\u200b. That function uses named return parameters to free pkey\\u200b and ctx\\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \\\"return nil, nil, fail(...)\\\" pattern, meaning that pkey\\u200b and ctx\\u200b will be nil inside the deferred function that should free them.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-401\", \"description\": \"Missing Release of Memory after Effective Lifetime\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2026-04-22T19:17:15.708Z\"}, \"x_redhatCweChain\": \"CWE-401: Missing Release of Memory after Effective Lifetime\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-1394\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-22T19:17:15.708Z\", \"dateReserved\": \"2024-02-09T06:02:35.056Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-03-21T12:16:38.790Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2024:5634
Vulnerability from csaf_redhat - Published: 2024-08-20 16:11 - Updated: 2026-05-28 20:33Summary
Red Hat Security Advisory: podman security update
Severity
Important
Notes
Topic: An update for podman is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.
Security Fix(es):
* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
* go-retryablehttp: url might write sensitive information to log file (CVE-2024-6104)
* gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization (CVE-2024-37298)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the "return nil, nil, fail(...)" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.
7.5 (High)
Affected products
Fixed
42 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information.
6.0 (Medium)
Affected products
Fixed
42 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the gorilla/schema package. Running `schema.Decoder.Decode()` on a struct that has a field of type `[]struct{...}` opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality. Any use of `schema.Decoder.Decode()` on a struct with arrays of other structs could trigger memory exhaustion and lead to a denial of service.
7.5 (High)
Affected products
Fixed
42 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
26 references
Acknowledgments
@r3kumar
@qmuntal
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for podman is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.\n\nSecurity Fix(es):\n\n* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n\n* go-retryablehttp: url might write sensitive information to log file (CVE-2024-6104)\n\n* gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization (CVE-2024-37298)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:5634",
"url": "https://access.redhat.com/errata/RHSA-2024:5634"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "2295010",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295010"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5634.json"
}
],
"title": "Red Hat Security Advisory: podman security update",
"tracking": {
"current_release_date": "2026-05-28T20:33:32+00:00",
"generator": {
"date": "2026-05-28T20:33:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2024:5634",
"initial_release_date": "2024-08-20T16:11:08+00:00",
"revision_history": [
{
"date": "2024-08-20T16:11:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-08-20T16:11:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-28T20:33:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2:4.4.1-20.el9_2.src",
"product": {
"name": "podman-2:4.4.1-20.el9_2.src",
"product_id": "podman-2:4.4.1-20.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.4.1-20.el9_2?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-plugins-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-plugins-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-remote-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-remote-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-tests-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-tests-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-tests-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_id": "podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.4.1-20.el9_2?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-remote-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-remote-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-tests-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-tests-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-tests-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_id": "podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.4.1-20.el9_2?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-plugins-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-plugins-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-remote-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-remote-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-tests-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-tests-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-tests-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_id": "podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.4.1-20.el9_2?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-plugins-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-plugins-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-remote-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-remote-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-tests-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-tests-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-tests-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-debugsource-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"product": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_id": "podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.4.1-20.el9_2?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-2:4.4.1-20.el9_2.noarch",
"product": {
"name": "podman-docker-2:4.4.1-20.el9_2.noarch",
"product_id": "podman-docker-2:4.4.1-20.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@4.4.1-20.el9_2?arch=noarch\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2:4.4.1-20.el9_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src"
},
"product_reference": "podman-2:4.4.1-20.el9_2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-debugsource-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-2:4.4.1-20.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch"
},
"product_reference": "podman-docker-2:4.4.1-20.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-plugins-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-plugins-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-plugins-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-remote-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-remote-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-remote-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-remote-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-2:4.4.1-20.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64"
},
"product_reference": "podman-tests-2:4.4.1-20.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-2:4.4.1-20.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le"
},
"product_reference": "podman-tests-2:4.4.1-20.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-2:4.4.1-20.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x"
},
"product_reference": "podman-tests-2:4.4.1-20.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-2:4.4.1-20.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
},
"product_reference": "podman-tests-2:4.4.1-20.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"@r3kumar",
"@qmuntal"
]
}
],
"cve": "CVE-2024-1394",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2024-02-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2262921"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "RHBZ#2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136",
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6",
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"category": "external",
"summary": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f",
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2660",
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2660.json",
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-20T16:11:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5634"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads"
},
{
"cve": "CVE-2024-6104",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2024-06-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2294000"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-retryablehttp: url might write sensitive information to log file",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-6104"
},
{
"category": "external",
"summary": "RHBZ#2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-6104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6104"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104"
}
],
"release_date": "2024-06-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-20T16:11:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5634"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-retryablehttp: url might write sensitive information to log file"
},
{
"cve": "CVE-2024-37298",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-07-01T19:21:12+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295010"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the gorilla/schema package. Running `schema.Decoder.Decode()` on a struct that has a field of type `[]struct{...}` opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality. Any use of `schema.Decoder.Decode()` on a struct with arrays of other structs could trigger memory exhaustion and lead to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in the gorilla/schema package is a high-severity issue due to its potential to cause a Denial of Service (DoS) attack through memory exhaustion. The schema.Decoder.Decode() function, when processing a struct with fields of type []struct{...}, is susceptible to malicious input that exploits sparse slice functionality. This can result in excessive memory allocations, overwhelming the system\u0027s resources and rendering the application unresponsive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37298"
},
{
"category": "external",
"summary": "RHBZ#2295010",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295010"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37298"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37298",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37298"
},
{
"category": "external",
"summary": "https://github.com/gorilla/schema/blob/main/decoder.go#L223",
"url": "https://github.com/gorilla/schema/blob/main/decoder.go#L223"
},
{
"category": "external",
"summary": "https://github.com/gorilla/schema/commit/cd59f2f12cbdfa9c06aa63e425d1fe4a806967ff",
"url": "https://github.com/gorilla/schema/commit/cd59f2f12cbdfa9c06aa63e425d1fe4a806967ff"
},
{
"category": "external",
"summary": "https://github.com/gorilla/schema/security/advisories/GHSA-3669-72x9-r9p3",
"url": "https://github.com/gorilla/schema/security/advisories/GHSA-3669-72x9-r9p3"
}
],
"release_date": "2024-06-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-20T16:11:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:5634"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.src",
"AppStream-9.2.0.Z.EUS:podman-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-debugsource-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-docker-2:4.4.1-20.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-gvproxy-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-plugins-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-remote-debuginfo-2:4.4.1-20.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:podman-tests-2:4.4.1-20.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization"
}
]
}
RHSA-2024:7262
Vulnerability from csaf_redhat - Published: 2024-09-26 18:39 - Updated: 2026-05-28 20:33Summary
Red Hat Security Advisory: osbuild-composer security update
Severity
Important
Notes
Topic: An update for osbuild-composer is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.
Security Fix(es):
* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the "return nil, nil, fail(...)" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.
7.5 (High)
Affected products
Fixed
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
7.5 (High)
Affected products
Fixed
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
22 references
Acknowledgments
@r3kumar
@qmuntal
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for osbuild-composer is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.\n\nSecurity Fix(es):\n\n* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7262",
"url": "https://access.redhat.com/errata/RHSA-2024:7262"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7262.json"
}
],
"title": "Red Hat Security Advisory: osbuild-composer security update",
"tracking": {
"current_release_date": "2026-05-28T20:33:38+00:00",
"generator": {
"date": "2026-05-28T20:33:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2024:7262",
"initial_release_date": "2024-09-26T18:39:11+00:00",
"revision_history": [
{
"date": "2024-09-26T18:39:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-26T18:39:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-28T20:33:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:101-2.el8_10.src",
"product": {
"name": "osbuild-composer-0:101-2.el8_10.src",
"product_id": "osbuild-composer-0:101-2.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@101-2.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-core-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-core-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-worker-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-worker-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@101-2.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"product_id": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@101-2.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-core-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-core-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@101-2.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"product_id": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@101-2.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-core-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-core-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-worker-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-worker-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@101-2.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64",
"product_id": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@101-2.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-core-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-core-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-worker-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-worker-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@101-2.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"product_id": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@101-2.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:101-2.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src"
},
"product_reference": "osbuild-composer-0:101-2.el8_10.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-core-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-core-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-core-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-core-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-worker-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-worker-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-worker-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"@r3kumar",
"@qmuntal"
]
}
],
"cve": "CVE-2024-1394",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2024-02-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2262921"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "RHBZ#2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136",
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6",
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"category": "external",
"summary": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f",
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2660",
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2660.json",
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T18:39:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7262"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T18:39:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7262"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-core-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-debugsource-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-tests-debuginfo-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-0:101-2.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:osbuild-composer-worker-debuginfo-0:101-2.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
}
]
}
RHSA-2025:7118
Vulnerability from csaf_redhat - Published: 2025-05-13 08:41 - Updated: 2026-05-28 20:33Summary
Red Hat Security Advisory: osbuild and osbuild-composer security update
Severity
Important
Notes
Topic: An update for osbuild and osbuild-composer is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.
Security Fix(es):
* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
* go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
* golang-fips: Golang FIPS zeroed buffer (CVE-2024-9355)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the "return nil, nil, fail(...)" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.
7.5 (High)
Affected products
Fixed
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-0:141-1.el9.src | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch | — |
Workaround
|
Threats
Impact
Important
A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted computed hmac sum to an untrusted input sum if an attacker can send a zeroed buffer in place of a pre-computed sum. It is also possible to force a derived key to be all zeros instead of an unpredictable value. This may have follow-on implications for the Go TLS stack.
6.5 (Medium)
Affected products
Fixed
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-0:141-1.el9.src | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.
5.9 (Medium)
Affected products
Fixed
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-0:141-1.el9.src | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch | — |
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch | — |
Workaround
|
Threats
Impact
Moderate
References
35 references
Acknowledgments
@r3kumar
@qmuntal
Red Hat
David Benoit
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for osbuild and osbuild-composer is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.\n\nSecurity Fix(es):\n\n* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n\n* go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)\n\n* golang-fips: Golang FIPS zeroed buffer (CVE-2024-9355)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:7118",
"url": "https://access.redhat.com/errata/RHSA-2025:7118"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.6_release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.6_release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2315719",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315719"
},
{
"category": "external",
"summary": "RHEL-16396",
"url": "https://issues.redhat.com/browse/RHEL-16396"
},
{
"category": "external",
"summary": "RHEL-4570",
"url": "https://issues.redhat.com/browse/RHEL-4570"
},
{
"category": "external",
"summary": "RHEL-4617",
"url": "https://issues.redhat.com/browse/RHEL-4617"
},
{
"category": "external",
"summary": "RHEL-4636",
"url": "https://issues.redhat.com/browse/RHEL-4636"
},
{
"category": "external",
"summary": "RHEL-56049",
"url": "https://issues.redhat.com/browse/RHEL-56049"
},
{
"category": "external",
"summary": "RHEL-78659",
"url": "https://issues.redhat.com/browse/RHEL-78659"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7118.json"
}
],
"title": "Red Hat Security Advisory: osbuild and osbuild-composer security update",
"tracking": {
"current_release_date": "2026-05-28T20:33:48+00:00",
"generator": {
"date": "2026-05-28T20:33:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2025:7118",
"initial_release_date": "2025-05-13T08:41:23+00:00",
"revision_history": [
{
"date": "2025-05-13T08:41:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-13T08:41:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-28T20:33:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132-1.el9.src",
"product": {
"name": "osbuild-composer-0:132-1.el9.src",
"product_id": "osbuild-composer-0:132-1.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132-1.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "osbuild-0:141-1.el9.src",
"product": {
"name": "osbuild-0:141-1.el9.src",
"product_id": "osbuild-0:141-1.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild@141-1.el9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-core-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-core-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-worker-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-worker-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-debugsource-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-debugsource-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132-1.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"product_id": "osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132-1.el9?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-core-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-core-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-worker-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-worker-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132-1.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"product_id": "osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132-1.el9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-core-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-core-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-worker-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-worker-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-debugsource-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-debugsource-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132-1.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"product_id": "osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132-1.el9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-0:132-1.el9.s390x",
"product_id": "osbuild-composer-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-core-0:132-1.el9.s390x",
"product_id": "osbuild-composer-core-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-worker-0:132-1.el9.s390x",
"product_id": "osbuild-composer-worker-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-debugsource-0:132-1.el9.s390x",
"product_id": "osbuild-composer-debugsource-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"product_id": "osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.s390x",
"product_id": "osbuild-composer-debuginfo-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"product_id": "osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132-1.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"product_id": "osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132-1.el9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-0:141-1.el9.noarch",
"product": {
"name": "osbuild-0:141-1.el9.noarch",
"product_id": "osbuild-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild@141-1.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "osbuild-depsolve-dnf-0:141-1.el9.noarch",
"product": {
"name": "osbuild-depsolve-dnf-0:141-1.el9.noarch",
"product_id": "osbuild-depsolve-dnf-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-depsolve-dnf@141-1.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "osbuild-luks2-0:141-1.el9.noarch",
"product": {
"name": "osbuild-luks2-0:141-1.el9.noarch",
"product_id": "osbuild-luks2-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-luks2@141-1.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "osbuild-lvm2-0:141-1.el9.noarch",
"product": {
"name": "osbuild-lvm2-0:141-1.el9.noarch",
"product_id": "osbuild-lvm2-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-lvm2@141-1.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "osbuild-ostree-0:141-1.el9.noarch",
"product": {
"name": "osbuild-ostree-0:141-1.el9.noarch",
"product_id": "osbuild-ostree-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-ostree@141-1.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "osbuild-selinux-0:141-1.el9.noarch",
"product": {
"name": "osbuild-selinux-0:141-1.el9.noarch",
"product_id": "osbuild-selinux-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-selinux@141-1.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-osbuild-0:141-1.el9.noarch",
"product": {
"name": "python3-osbuild-0:141-1.el9.noarch",
"product_id": "python3-osbuild-0:141-1.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-osbuild@141-1.el9?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch"
},
"product_reference": "osbuild-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-0:141-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-0:141-1.el9.src"
},
"product_reference": "osbuild-0:141-1.el9.src",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src"
},
"product_reference": "osbuild-composer-0:132-1.el9.src",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-core-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-core-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-core-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-core-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-debuginfo-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-debugsource-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-debugsource-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-worker-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-worker-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-worker-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-worker-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-depsolve-dnf-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch"
},
"product_reference": "osbuild-depsolve-dnf-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-luks2-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch"
},
"product_reference": "osbuild-luks2-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-lvm2-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch"
},
"product_reference": "osbuild-lvm2-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-ostree-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch"
},
"product_reference": "osbuild-ostree-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-selinux-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch"
},
"product_reference": "osbuild-selinux-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-osbuild-0:141-1.el9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
},
"product_reference": "python3-osbuild-0:141-1.el9.noarch",
"relates_to_product_reference": "AppStream-9.6.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"@r3kumar",
"@qmuntal"
]
}
],
"cve": "CVE-2024-1394",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2024-02-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2262921"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
],
"known_not_affected": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "RHBZ#2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136",
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6",
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"category": "external",
"summary": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f",
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2660",
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2660.json",
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-13T08:41:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7118"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads"
},
{
"acknowledgments": [
{
"names": [
"David Benoit"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-9355",
"cwe": {
"id": "CWE-457",
"name": "Use of Uninitialized Variable"
},
"discovery_date": "2024-09-30T17:51:17.811000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2315719"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted computed hmac sum to an untrusted input sum if an attacker can send a zeroed buffer in place of a pre-computed sum.\u00a0 It is also possible to force a derived key to be all zeros instead of an unpredictable value.\u00a0 This may have follow-on implications for the Go TLS stack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-fips: Golang FIPS zeroed buffer",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is specific to the Go language and only affects the test code in cri-o and conmon, not the production code. Since both projects use Go exclusively for testing purposes, this issue does not impact their production environment. Therefore, cri-o and conmon are not affected by this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
],
"known_not_affected": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-9355"
},
{
"category": "external",
"summary": "RHBZ#2315719",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315719"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-9355",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9355"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-9355",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-9355"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/pull/198",
"url": "https://github.com/golang-fips/openssl/pull/198"
}
],
"release_date": "2024-09-30T20:53:42.833000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-13T08:41:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7118"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang-fips: Golang FIPS zeroed buffer"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
],
"known_not_affected": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-13T08:41:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7118"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-0:141-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.src",
"AppStream-9.6.0.GA:osbuild-composer-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-core-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-debugsource-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-tests-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.aarch64",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.ppc64le",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.s390x",
"AppStream-9.6.0.GA:osbuild-composer-worker-debuginfo-0:132-1.el9.x86_64",
"AppStream-9.6.0.GA:osbuild-depsolve-dnf-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-luks2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-lvm2-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-ostree-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:osbuild-selinux-0:141-1.el9.noarch",
"AppStream-9.6.0.GA:python3-osbuild-0:141-1.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
}
]
}
WID-SEC-W-2024-0681
Vulnerability from csaf_certbund - Published: 2024-03-20 23:00 - Updated: 2025-05-20 22:00Summary
Red Hat Enterprise Linux: Golang-Komponenten-Schwachstelle ermöglicht Denial of Service
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Red Hat Ansible Automation Platform ist eine End-to-End-Automatisierungsplattform für die Systemkonfiguration, die Softwarebereitstellung und die Orchestrierung erweiterter Workflows.
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenShift, Red Hat Ansible Automation Platform und Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Container Platform <4.12.54
Red Hat / OpenShift
|
Container Platform <4.12.54 | ||
|
Red Hat OpenShift Container Platform <4.15.6
Red Hat / OpenShift
|
Container Platform <4.15.6 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.15
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.15
|
Container Platform 4.15 | |
|
Red Hat Ansible Automation Platform
Red Hat / Ansible Automation Platform
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
Red Hat OpenShift Developer Tools and Services
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:developer_tools_and_services
|
Developer Tools and Services | |
|
Red Hat OpenShift Pipelines
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:pipelines
|
Pipelines | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
Red Hat Ansible Automation Platform 2.4
Red Hat / Ansible Automation Platform
|
cpe:/a:redhat:ansible_automation_platform:2.4
|
2.4 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— |
References
61 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.\r\nRed Hat Ansible Automation Platform ist eine End-to-End-Automatisierungsplattform f\u00fcr die Systemkonfiguration, die Softwarebereitstellung und die Orchestrierung erweiterter Workflows.\r\nRed Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenShift, Red Hat Ansible Automation Platform und Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0681 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0681.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0681 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0681"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2024-03-20",
"url": "https://access.redhat.com/errata/RHSA-2024:1462"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2024-03-20",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1472 vom 2024-03-21",
"url": "https://access.redhat.com/errata/RHSA-2024:1472"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1462 vom 2024-03-21",
"url": "https://linux.oracle.com/errata/ELSA-2024-1462.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1468 vom 2024-03-21",
"url": "https://access.redhat.com/errata/RHSA-2024:1468"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1472 vom 2024-03-22",
"url": "https://linux.oracle.com/errata/ELSA-2024-1472.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1501 vom 2024-03-25",
"url": "https://access.redhat.com/errata/RHSA-2024:1501"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1502 vom 2024-03-25",
"url": "https://access.redhat.com/errata/RHSA-2024:1502"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1502 vom 2024-03-27",
"url": "https://linux.oracle.com/errata/ELSA-2024-1502.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1501 vom 2024-03-27",
"url": "https://linux.oracle.com/errata/ELSA-2024-1501.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:1472 vom 2024-03-27",
"url": "https://errata.build.resf.org/RLSA-2024:1472"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1561 vom 2024-04-02",
"url": "https://access.redhat.com/errata/RHSA-2024:1561"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1640 vom 2024-04-02",
"url": "https://access.redhat.com/errata/RHSA-2024:1640"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1646 vom 2024-04-02",
"url": "https://access.redhat.com/errata/RHSA-2024:1646"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1644 vom 2024-04-02",
"url": "https://access.redhat.com/errata/RHSA-2024:1644"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1563 vom 2024-04-02",
"url": "https://access.redhat.com/errata/RHSA-2024:1563"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1574 vom 2024-04-03",
"url": "https://access.redhat.com/errata/RHSA-2024:1574"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1646 vom 2024-04-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-1646.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1566 vom 2024-04-03",
"url": "https://access.redhat.com/errata/RHSA-2024:1566"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1567 vom 2024-04-03",
"url": "https://access.redhat.com/errata/RHSA-2024:1567"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1644 vom 2024-04-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-1644.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:1646 vom 2024-04-05",
"url": "https://errata.build.resf.org/RLSA-2024:1646"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:1644 vom 2024-04-05",
"url": "https://errata.build.resf.org/RLSA-2024:1644"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1763 vom 2024-04-18",
"url": "https://access.redhat.com/errata/RHSA-2024:1763"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1962 vom 2024-04-24",
"url": "http://linux.oracle.com/errata/ELSA-2024-1962.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1897 vom 2024-04-26",
"url": "https://access.redhat.com/errata/RHSA-2024:1897"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7149801 vom 2024-04-30",
"url": "https://www.ibm.com/support/pages/node/7149801"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2569 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2569"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2562 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2562"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2568 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2568"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2569 vom 2024-05-08",
"url": "https://linux.oracle.com/errata/ELSA-2024-2569.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2568 vom 2024-05-08",
"url": "https://linux.oracle.com/errata/ELSA-2024-2568.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2562 vom 2024-05-08",
"url": "https://linux.oracle.com/errata/ELSA-2024-2562.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:1502 vom 2024-05-10",
"url": "https://errata.build.resf.org/RLSA-2024:1502"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3265 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:3265"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-3265 vom 2024-05-30",
"url": "http://linux.oracle.com/errata/ELSA-2024-3265.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4146 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:4146"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4371 vom 2024-07-09",
"url": "https://linux.oracle.com/errata/ELSA-2024-4371.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4378 vom 2024-07-08",
"url": "https://access.redhat.com/errata/RHSA-2024:4378"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4379 vom 2024-07-09",
"url": "https://linux.oracle.com/errata/ELSA-2024-4379.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4379 vom 2024-07-08",
"url": "https://access.redhat.com/errata/RHSA-2024:4379"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4371 vom 2024-07-08",
"url": "https://access.redhat.com/errata/RHSA-2024:4371"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4378 vom 2024-07-09",
"url": "https://linux.oracle.com/errata/ELSA-2024-4378.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4502 vom 2024-07-12",
"url": "https://access.redhat.com/errata/RHSA-2024:4502"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4502 vom 2024-07-12",
"url": "https://linux.oracle.com/errata/ELSA-2024-4502.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4581 vom 2024-07-17",
"url": "https://access.redhat.com/errata/RHSA-2024:4581"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4672 vom 2024-07-22",
"url": "https://access.redhat.com/errata/RHSA-2024:4672"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4761 vom 2024-07-24",
"url": "https://access.redhat.com/errata/RHSA-2024:4761"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4762 vom 2024-07-24",
"url": "https://access.redhat.com/errata/RHSA-2024:4762"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4761 vom 2024-07-24",
"url": "https://linux.oracle.com/errata/ELSA-2024-4761.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4762 vom 2024-07-24",
"url": "https://linux.oracle.com/errata/ELSA-2024-4762.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:4502 vom 2024-07-26",
"url": "https://errata.build.resf.org/RLSA-2024:4502"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4960 vom 2024-08-07",
"url": "https://access.redhat.com/errata/RHSA-2024:4960"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5258 vom 2024-08-13",
"url": "https://access.redhat.com/errata/RHSA-2024:5258"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5258 vom 2024-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2024-5258.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5634 vom 2024-08-20",
"url": "https://access.redhat.com/errata/RHSA-2024:5634"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7262 vom 2024-09-26",
"url": "https://access.redhat.com/errata/RHSA-2024:7262"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:7118 vom 2025-05-13",
"url": "https://access.redhat.com/errata/RHSA-2025:7118"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-7967 vom 2025-05-21",
"url": "https://linux.oracle.com/errata/ELSA-2025-7967.html"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux: Golang-Komponenten-Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2025-05-20T22:00:00.000+00:00",
"generator": {
"date": "2025-05-21T11:04:09.478+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2024-0681",
"initial_release_date": "2024-03-20T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-03-20T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-03-21T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-03-24T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-03-25T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-03-26T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Oracle Linux und Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-04-02T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-04-03T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2024-04-07T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-04-18T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-04-24T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-04-28T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-04-29T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-05-01T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-07T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-05-12T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-05-21T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-06-26T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-08T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2024-07-11T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-14T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-07-16T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-21T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-23T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-24T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-07-28T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-08-07T22:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-12T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-14T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-08-20T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-26T22:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-18T23:00:00.000+00:00",
"number": "32",
"summary": "Pr\u00fcfung Produkteintragung"
},
{
"date": "2025-05-12T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-05-20T22:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Oracle Linux aufgenommen"
}
],
"status": "final",
"version": "34"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM MQ",
"product": {
"name": "IBM MQ",
"product_id": "T021398",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:-"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.4",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4",
"product_id": "1496312",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.4"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform",
"product": {
"name": "Red Hat Ansible Automation Platform",
"product_id": "T033608",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:-"
}
}
}
],
"category": "product_name",
"name": "Ansible Automation Platform"
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "Container Platform 4.14",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14",
"product_id": "T031393",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform_4.14.4"
}
}
},
{
"category": "product_version",
"name": "Developer Tools and Services",
"product": {
"name": "Red Hat OpenShift Developer Tools and Services",
"product_id": "T033606",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:developer_tools_and_services"
}
}
},
{
"category": "product_version",
"name": "Pipelines",
"product": {
"name": "Red Hat OpenShift Pipelines",
"product_id": "T033607",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:pipelines"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15.6",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15.6",
"product_id": "T033835"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15.6",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15.6",
"product_id": "T033835-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15.6"
}
}
},
{
"category": "product_version",
"name": "Container Platform 4.15",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15",
"product_id": "T033836",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform_4.15"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.54",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.54",
"product_id": "T033854"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.54",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.54",
"product_id": "T033854-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.54"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1394",
"product_status": {
"known_affected": [
"T033854",
"T033835",
"67646",
"T033836",
"T033608",
"T031393",
"T033606",
"T033607",
"T004914",
"T021398",
"1496312",
"T032255"
]
},
"release_date": "2024-03-20T23:00:00.000+00:00",
"title": "CVE-2024-1394"
}
]
}
WID-SEC-W-2024-1226
Vulnerability from csaf_certbund - Published: 2024-05-22 22:00 - Updated: 2025-11-18 23:00Summary
Red Hat OpenShift: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern oder um weitere nicht spezifizierte Angriffe auszuführen.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
References
49 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern oder um weitere nicht spezifizierte Angriffe auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1226 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1226.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1226 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1226"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2874 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2874"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2929 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2929"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2930 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2930"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2932 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2932"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2933 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2933"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2874 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:3316"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2901 vom 2024-05-23",
"url": "https://access.redhat.com/errata/RHSA-2024:2901"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3473 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3473"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3790 vom 2024-06-11",
"url": "https://access.redhat.com/errata/RHSA-2024:3790"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3715 vom 2024-06-12",
"url": "https://access.redhat.com/errata/RHSA-2024:3715"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3314 vom 2024-06-13",
"url": "https://access.redhat.com/errata/RHSA-2024:3314"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2024:3919"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3830 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:3830"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3827 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:3827"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3868 vom 2024-06-17",
"url": "https://access.redhat.com/errata/RHSA-2024:3868"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3826 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:3826"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3889 vom 2024-06-19",
"url": "https://access.redhat.com/errata/RHSA-2024:3889"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3989 vom 2024-06-20",
"url": "https://access.redhat.com/errata/RHSA-2024:3989"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4163 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:4163"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3637 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:3637"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1616 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:1616"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3617 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:3617"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4269 vom 2024-07-03",
"url": "https://access.redhat.com/errata/RHSA-2024:4269"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4553 vom 2024-07-16",
"url": "https://access.redhat.com/errata/RHSA-2024:4553"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4699 vom 2024-07-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4699"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4455 vom 2024-07-29",
"url": "https://access.redhat.com/errata/RHSA-2024:4455"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASDOCKER-2024-041 vom 2024-08-13",
"url": "https://alas.aws.amazon.com/AL2/ALASDOCKER-2024-041.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5422 vom 2024-08-20",
"url": "https://access.redhat.com/errata/RHSA-2024:5422"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5745 vom 2024-08-22",
"url": "https://access.redhat.com/errata/RHSA-2024:5745"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6667 vom 2024-09-13",
"url": "https://access.redhat.com/errata/RHSA-2024:6667"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6755 vom 2024-09-18",
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7164 vom 2024-09-26",
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7184 vom 2024-10-03",
"url": "https://access.redhat.com/errata/RHSA-2024:7184"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8318 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8318"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8676 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8677 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8677"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
"url": "https://access.redhat.com/errata/RHSA-2024:8688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9088 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9088"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7121-2 vom 2024-11-20",
"url": "https://ubuntu.com/security/notices/USN-7121-2"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0164 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0323 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0323"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0664 vom 2025-01-23",
"url": "https://access.redhat.com/errata/RHSA-2025:0664"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0832 vom 2025-02-06",
"url": "https://access.redhat.com/errata/RHSA-2025:0832"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:2876 vom 2025-03-17",
"url": "https://access.redhat.com/errata/RHSA-2025:2876"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:7753 vom 2025-05-16",
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "external",
"summary": "Atlassian Security Bulletin - November 18 2025",
"url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-11-18T23:00:00.000+00:00",
"generator": {
"date": "2025-11-19T09:42:49.985+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2024-1226",
"initial_release_date": "2024-05-22T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-05-22T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-05-23T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-10T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-11T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-13T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-16T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Rocky Enterprise Software Foundation und Red Hat aufgenommen"
},
{
"date": "2024-06-18T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-19T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-27T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-30T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-02T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-15T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-25T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-29T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-13T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-08-20T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-21T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-12T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-18T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-25T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-03T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-23T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-30T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-11T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-20T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-01-08T23:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-23T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-05T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-03-16T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-05-15T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-18T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "34"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.2",
"product": {
"name": "Atlassian Bitbucket \u003c10.0.2",
"product_id": "T048675"
}
},
{
"category": "product_version",
"name": "10.0.2",
"product": {
"name": "Atlassian Bitbucket 10.0.2",
"product_id": "T048675-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:10.0.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c8.19.25 (LTS)",
"product": {
"name": "Atlassian Bitbucket \u003c8.19.25 (LTS)",
"product_id": "T048676"
}
},
{
"category": "product_version",
"name": "8.19.25 (LTS)",
"product": {
"name": "Atlassian Bitbucket 8.19.25 (LTS)",
"product_id": "T048676-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:8.19.25_%28lts%29"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.4.13 (LTS)",
"product": {
"name": "Atlassian Bitbucket \u003c9.4.13 (LTS)",
"product_id": "T048677"
}
},
{
"category": "product_version",
"name": "9.4.13 (LTS)",
"product": {
"name": "Atlassian Bitbucket 9.4.13 (LTS)",
"product_id": "T048677-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:9.4.13_%28lts%29"
}
}
}
],
"category": "product_name",
"name": "Bitbucket"
}
],
"category": "vendor",
"name": "Atlassian"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T033787",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "T035142",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T038901",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Secondary Scheduler Operator",
"product": {
"name": "Red Hat OpenShift Secondary Scheduler Operator",
"product_id": "T027759",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:::secondary_scheduler_operator"
}
}
},
{
"category": "product_version",
"name": "Kube Descheduler Operator 5",
"product": {
"name": "Red Hat OpenShift Kube Descheduler Operator 5",
"product_id": "T033270",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:kube_descheduler_operator_5"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift",
"product": {
"name": "Red Hat OpenShift",
"product_id": "T035034",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:-"
}
}
},
{
"category": "product_version_range",
"name": "Migration Toolkit for Applications \u003c7.0.3",
"product": {
"name": "Red Hat OpenShift Migration Toolkit for Applications \u003c7.0.3",
"product_id": "T035036"
}
},
{
"category": "product_version",
"name": "Migration Toolkit for Applications 7.0.3",
"product": {
"name": "Red Hat OpenShift Migration Toolkit for Applications 7.0.3",
"product_id": "T035036-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:migration_toolkit_for_applications__7.0.3"
}
}
},
{
"category": "product_version",
"name": "Custom Metric Autoscaler 2",
"product": {
"name": "Red Hat OpenShift Custom Metric Autoscaler 2",
"product_id": "T035047",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:custom_metric_autoscaler_2"
}
}
},
{
"category": "product_version",
"name": "Network Observability 1.6",
"product": {
"name": "Red Hat OpenShift Network Observability 1.6",
"product_id": "T035431",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:network_observability_1.6"
}
}
},
{
"category": "product_version",
"name": "GitOps 1.12",
"product": {
"name": "Red Hat OpenShift GitOps 1.12",
"product_id": "T035679",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:gitops_1.12"
}
}
},
{
"category": "product_version",
"name": "Run Once Duration Override Operator 1",
"product": {
"name": "Red Hat OpenShift Run Once Duration Override Operator 1",
"product_id": "T035698",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:run_once_duration_override_operator_1"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.16.8",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.16.8",
"product_id": "T036959"
}
},
{
"category": "product_version",
"name": "Container Platform 4.16.8",
"product": {
"name": "Red Hat OpenShift Container Platform 4.16.8",
"product_id": "T036959-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.16.8"
}
}
},
{
"category": "product_version_range",
"name": "for Windows Containers \u003c10.15.3",
"product": {
"name": "Red Hat OpenShift for Windows Containers \u003c10.15.3",
"product_id": "T036993"
}
},
{
"category": "product_version",
"name": "for Windows Containers 10.15.3",
"product": {
"name": "Red Hat OpenShift for Windows Containers 10.15.3",
"product_id": "T036993-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:for_windows_containers__10.15.3"
}
}
},
{
"category": "product_version",
"name": "CodeReady Workspaces",
"product": {
"name": "Red Hat OpenShift CodeReady Workspaces",
"product_id": "T037618",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:codeready_workspaces"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.14.38",
"product_id": "T037940"
}
},
{
"category": "product_version",
"name": "Container Platform 4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14.38",
"product_id": "T037940-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.14.38"
}
}
},
{
"category": "product_version_range",
"name": "Data Foundation \u003c4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation \u003c4.14.13",
"product_id": "T040215"
}
},
{
"category": "product_version",
"name": "Data Foundation 4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation 4.14.13",
"product_id": "T040215-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:data_foundation__4.14.13"
}
}
},
{
"category": "product_version_range",
"name": "Serverless Logic \u003c1.35.0",
"product": {
"name": "Red Hat OpenShift Serverless Logic \u003c1.35.0",
"product_id": "T040597"
}
},
{
"category": "product_version",
"name": "Serverless Logic 1.35.0",
"product": {
"name": "Red Hat OpenShift Serverless Logic 1.35.0",
"product_id": "T040597-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:serverless_logic__1.35.0"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.72",
"product_id": "T040822"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.72",
"product_id": "T040822-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.72"
}
}
},
{
"category": "product_version_range",
"name": "GitOps \u003c1.15.2",
"product": {
"name": "Red Hat OpenShift GitOps \u003c1.15.2",
"product_id": "T043834"
}
},
{
"category": "product_version",
"name": "GitOps 1.15.2",
"product": {
"name": "Red Hat OpenShift GitOps 1.15.2",
"product_id": "T043834-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:gitops__1.15.2"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-26555",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2020-26555"
},
{
"cve": "CVE-2021-25220",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2021-25220"
},
{
"cve": "CVE-2021-29390",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2021-29390"
},
{
"cve": "CVE-2021-43618",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2021-43618"
},
{
"cve": "CVE-2022-0480",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-0480"
},
{
"cve": "CVE-2022-2795",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-2795"
},
{
"cve": "CVE-2022-3094",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-3094"
},
{
"cve": "CVE-2022-38096",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-38096"
},
{
"cve": "CVE-2022-40090",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-40090"
},
{
"cve": "CVE-2022-45934",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-45934"
},
{
"cve": "CVE-2022-48554",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-48554"
},
{
"cve": "CVE-2022-48624",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-48624"
},
{
"cve": "CVE-2023-24023",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-24023"
},
{
"cve": "CVE-2023-25193",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-25193"
},
{
"cve": "CVE-2023-25775",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-25775"
},
{
"cve": "CVE-2023-26159",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-26159"
},
{
"cve": "CVE-2023-26364",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-26364"
},
{
"cve": "CVE-2023-28322",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-28322"
},
{
"cve": "CVE-2023-28464",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-28464"
},
{
"cve": "CVE-2023-28866",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-28866"
},
{
"cve": "CVE-2023-2975",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-2975"
},
{
"cve": "CVE-2023-31083",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-31083"
},
{
"cve": "CVE-2023-31122",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-31122"
},
{
"cve": "CVE-2023-3446",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3446"
},
{
"cve": "CVE-2023-3567",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3567"
},
{
"cve": "CVE-2023-3618",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3618"
},
{
"cve": "CVE-2023-37453",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-37453"
},
{
"cve": "CVE-2023-3817",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3817"
},
{
"cve": "CVE-2023-38469",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38469"
},
{
"cve": "CVE-2023-38470",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38470"
},
{
"cve": "CVE-2023-38471",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38471"
},
{
"cve": "CVE-2023-38472",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38472"
},
{
"cve": "CVE-2023-38473",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38473"
},
{
"cve": "CVE-2023-38546",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38546"
},
{
"cve": "CVE-2023-39189",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39189"
},
{
"cve": "CVE-2023-39193",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39193"
},
{
"cve": "CVE-2023-39194",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39194"
},
{
"cve": "CVE-2023-39198",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-39326",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39326"
},
{
"cve": "CVE-2023-40745",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-40745"
},
{
"cve": "CVE-2023-41175",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-41175"
},
{
"cve": "CVE-2023-4133",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-4133"
},
{
"cve": "CVE-2023-42754",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-42754"
},
{
"cve": "CVE-2023-42756",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-42756"
},
{
"cve": "CVE-2023-43785",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43785"
},
{
"cve": "CVE-2023-43786",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43786"
},
{
"cve": "CVE-2023-43787",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43787"
},
{
"cve": "CVE-2023-43788",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43788"
},
{
"cve": "CVE-2023-43789",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43789"
},
{
"cve": "CVE-2023-4408",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-4408"
},
{
"cve": "CVE-2023-45286",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45286"
},
{
"cve": "CVE-2023-45287",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45287"
},
{
"cve": "CVE-2023-45288",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2023-45289",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45289"
},
{
"cve": "CVE-2023-45290",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45290"
},
{
"cve": "CVE-2023-45857",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45857"
},
{
"cve": "CVE-2023-45863",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45863"
},
{
"cve": "CVE-2023-46218",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-46218"
},
{
"cve": "CVE-2023-46862",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-46862"
},
{
"cve": "CVE-2023-47038",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-47038"
},
{
"cve": "CVE-2023-48631",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-48631"
},
{
"cve": "CVE-2023-50387",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-50387"
},
{
"cve": "CVE-2023-50868",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-50868"
},
{
"cve": "CVE-2023-51043",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-51043"
},
{
"cve": "CVE-2023-51779",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-51779"
},
{
"cve": "CVE-2023-51780",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-51780"
},
{
"cve": "CVE-2023-52425",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52425"
},
{
"cve": "CVE-2023-52434",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52434"
},
{
"cve": "CVE-2023-52448",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52448"
},
{
"cve": "CVE-2023-52476",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52476"
},
{
"cve": "CVE-2023-52489",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52489"
},
{
"cve": "CVE-2023-52522",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52522"
},
{
"cve": "CVE-2023-52529",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52529"
},
{
"cve": "CVE-2023-52574",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52574"
},
{
"cve": "CVE-2023-52578",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52578"
},
{
"cve": "CVE-2023-52580",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52580"
},
{
"cve": "CVE-2023-52581",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52581"
},
{
"cve": "CVE-2023-52597",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52597"
},
{
"cve": "CVE-2023-52610",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52620",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52620"
},
{
"cve": "CVE-2023-5678",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-5678"
},
{
"cve": "CVE-2023-6040",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6040"
},
{
"cve": "CVE-2023-6121",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6121"
},
{
"cve": "CVE-2023-6129",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6129"
},
{
"cve": "CVE-2023-6176",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6176"
},
{
"cve": "CVE-2023-6228",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6228"
},
{
"cve": "CVE-2023-6237",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6237"
},
{
"cve": "CVE-2023-6240",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6240"
},
{
"cve": "CVE-2023-6531",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6531"
},
{
"cve": "CVE-2023-6546",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6546"
},
{
"cve": "CVE-2023-6622",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6622"
},
{
"cve": "CVE-2023-6915",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6915"
},
{
"cve": "CVE-2023-6931",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6931"
},
{
"cve": "CVE-2023-6932",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6932"
},
{
"cve": "CVE-2023-7008",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-7008"
},
{
"cve": "CVE-2024-0565",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-0565"
},
{
"cve": "CVE-2024-0727",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-0727"
},
{
"cve": "CVE-2024-0841",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-0841"
},
{
"cve": "CVE-2024-1085",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1085"
},
{
"cve": "CVE-2024-1086",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1086"
},
{
"cve": "CVE-2024-1394",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1394"
},
{
"cve": "CVE-2024-1488",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1488"
},
{
"cve": "CVE-2024-21011",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21011"
},
{
"cve": "CVE-2024-21012",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21012"
},
{
"cve": "CVE-2024-21068",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21068"
},
{
"cve": "CVE-2024-21085",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21085"
},
{
"cve": "CVE-2024-21094",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21094"
},
{
"cve": "CVE-2024-22365",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-22365"
},
{
"cve": "CVE-2024-24783",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24783"
},
{
"cve": "CVE-2024-24784",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24784"
},
{
"cve": "CVE-2024-24785",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24785"
},
{
"cve": "CVE-2024-24786",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-25062",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-25062"
},
{
"cve": "CVE-2024-25742",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-25742"
},
{
"cve": "CVE-2024-25743",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-25743"
},
{
"cve": "CVE-2024-26582",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26582"
},
{
"cve": "CVE-2024-26583",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26583"
},
{
"cve": "CVE-2024-26584",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26584"
},
{
"cve": "CVE-2024-26585",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26585"
},
{
"cve": "CVE-2024-26586",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26586"
},
{
"cve": "CVE-2024-26593",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26593"
},
{
"cve": "CVE-2024-26602",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26602"
},
{
"cve": "CVE-2024-26609",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26609"
},
{
"cve": "CVE-2024-26633",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26633"
},
{
"cve": "CVE-2024-27316",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-27316"
},
{
"cve": "CVE-2024-28834",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-28834"
},
{
"cve": "CVE-2024-28835",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-28835"
},
{
"cve": "CVE-2024-28849",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-28849"
},
{
"cve": "CVE-2024-29180",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-29180"
},
{
"cve": "CVE-2024-2961",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-33599",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33602"
}
]
}
WID-SEC-W-2024-1228
Vulnerability from csaf_certbund - Published: 2024-05-22 22:00 - Updated: 2025-07-24 22:00Summary
Red Hat OpenStack: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenStack ist eine Sammlung von Diensten, um Cloud-Computing in Form von Infrastructure as a Service (IaaS) bereitstellen zu können.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenStack ausnutzen, um Sicherheitsmaßnahmen zu umgehen, eine Denial-of-Service-Zustand zu erzeugen, um vertrauliche Informationen offenzulegen und Daten zu ändern.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenStack 16.2
Red Hat / OpenStack
|
cpe:/a:redhat:openstack:16.2
|
16.2 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenStack <17.1
Red Hat / OpenStack
|
<17.1 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Red Hat OpenShift Container Platform <4.15.39
Red Hat / OpenShift
|
Container Platform <4.15.39 |
References
28 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenStack ist eine Sammlung von Diensten, um Cloud-Computing in Form von Infrastructure as a Service (IaaS) bereitstellen zu k\u00f6nnen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenStack ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen, eine Denial-of-Service-Zustand zu erzeugen, um vertrauliche Informationen offenzulegen und Daten zu \u00e4ndern.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1228 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1228.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1228 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1228"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2727 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2727"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2729 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2729"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2730 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2730"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2767 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2767"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2731 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2731"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2732 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2732"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2733 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2733"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2734 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2734"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2735 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2735"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2768 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2768"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2736 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2736"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2770 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2770"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2737 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2737"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2769 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2769"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3352 vom 2024-05-23",
"url": "https://access.redhat.com/errata/RHSA-2024:3352"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3327 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3327"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3331 vom 2024-05-30",
"url": "https://access.redhat.com/errata/RHSA-2024:3331"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3467 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3467"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3713 vom 2024-06-12",
"url": "https://access.redhat.com/errata/RHSA-2024:3713"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4054 vom 2024-06-24",
"url": "https://access.redhat.com/errata/RHSA-2024:4054"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7987 vom 2024-10-10",
"url": "https://access.redhat.com/errata/RHSA-2024:7987"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
"url": "https://access.redhat.com/errata/RHSA-2024:8688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10142 vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10142"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0832 vom 2025-02-06",
"url": "https://access.redhat.com/errata/RHSA-2025:0832"
},
{
"category": "external",
"summary": "IBM Security Bulletin",
"url": "https://www.ibm.com/support/pages/node/7240431"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenStack: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-07-24T22:00:00.000+00:00",
"generator": {
"date": "2025-07-25T07:16:56.800+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2024-1228",
"initial_release_date": "2024-05-22T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-05-22T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-05-23T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-11T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-23T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-10T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-25T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-05T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-24T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "10"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Operator",
"product": {
"name": "IBM MQ Operator",
"product_id": "T036688",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:operator"
}
}
}
],
"category": "product_name",
"name": "MQ"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15.39",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15.39",
"product_id": "T039437"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15.39",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15.39",
"product_id": "T039437-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15.39"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.72",
"product_id": "T040822"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.72",
"product_id": "T040822-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.72"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "16.2",
"product": {
"name": "Red Hat OpenStack 16.2",
"product_id": "T023999",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:16.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c17.1",
"product": {
"name": "Red Hat OpenStack \u003c17.1",
"product_id": "T031314"
}
},
{
"category": "product_version",
"name": "17.1",
"product": {
"name": "Red Hat OpenStack 17.1",
"product_id": "T031314-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:17.1"
}
}
}
],
"category": "product_name",
"name": "OpenStack"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1135",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1135"
},
{
"cve": "CVE-2023-39325",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39325"
},
{
"cve": "CVE-2023-44487",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-45288",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-4438",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-4438"
},
{
"cve": "CVE-2023-39326",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39326"
},
{
"cve": "CVE-2023-45287",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45287"
},
{
"cve": "CVE-2024-1394",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1394"
},
{
"cve": "CVE-2024-24680",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24680"
},
{
"cve": "CVE-2024-1141",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1141"
},
{
"cve": "CVE-2023-45803",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45803"
},
{
"cve": "CVE-2023-48795",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-6725",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6725"
},
{
"cve": "CVE-2023-6110",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6110"
},
{
"cve": "CVE-2024-22195",
"product_status": {
"known_affected": [
"T023999",
"67646",
"T031314",
"T040822",
"T036688",
"T039437"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-22195"
}
]
}
WID-SEC-W-2024-1307
Vulnerability from csaf_certbund - Published: 2024-06-06 22:00 - Updated: 2025-02-05 23:00Summary
Red Hat OpenShift Service Mesh Containers: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh Containers ausnutzen, um Dateien zu manipulieren, einen 'Denial of Service'-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Betroffene Betriebssysteme: - Linux
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift Service Mesh Containers <2.5.2
Red Hat / OpenShift
|
Service Mesh Containers <2.5.2 | ||
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Service Mesh Containers <2.4.8
Red Hat / OpenShift
|
Service Mesh Containers <2.4.8 | ||
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 |
References
13 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh Containers ausnutzen, um Dateien zu manipulieren, einen \u0027Denial of Service\u0027-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1307 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1307.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1307 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1307"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3680 vom 2024-06-06",
"url": "https://access.redhat.com/errata/RHSA-2024:3680"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3683 vom 2024-06-06",
"url": "https://access.redhat.com/errata/RHSA-2024:3683"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3790 vom 2024-06-11",
"url": "https://access.redhat.com/errata/RHSA-2024:3790"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3314 vom 2024-06-13",
"url": "https://access.redhat.com/errata/RHSA-2024:3314"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1616 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:1616"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4553 vom 2024-07-16",
"url": "https://access.redhat.com/errata/RHSA-2024:4553"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7184 vom 2024-10-03",
"url": "https://access.redhat.com/errata/RHSA-2024:7184"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
"url": "https://access.redhat.com/errata/RHSA-2024:8688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9088 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9088"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0832 vom 2025-02-06",
"url": "https://access.redhat.com/errata/RHSA-2025:0832"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift Service Mesh Containers: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-02-05T23:00:00.000+00:00",
"generator": {
"date": "2025-02-06T09:06:07.488+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-1307",
"initial_release_date": "2024-06-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-06-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-06-10T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-13T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-18T22:00:00.000+00:00",
"number": "4",
"summary": "Korrektur Plattformauswahl"
},
{
"date": "2024-06-30T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-15T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-03T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-11T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-05T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "10"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T038901",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Service Mesh Containers \u003c2.5.2",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers \u003c2.5.2",
"product_id": "T035259"
}
},
{
"category": "product_version",
"name": "Service Mesh Containers 2.5.2",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers 2.5.2",
"product_id": "T035259-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_containers__2.5.2"
}
}
},
{
"category": "product_version_range",
"name": "Service Mesh Containers \u003c2.4.8",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers \u003c2.4.8",
"product_id": "T035260"
}
},
{
"category": "product_version",
"name": "Service Mesh Containers 2.4.8",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers 2.4.8",
"product_id": "T035260-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_containers__2.4.8"
}
}
},
{
"category": "product_version",
"name": "Run Once Duration Override Operator 1",
"product": {
"name": "Red Hat OpenShift Run Once Duration Override Operator 1",
"product_id": "T035698",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:run_once_duration_override_operator_1"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.14.38",
"product_id": "T037940"
}
},
{
"category": "product_version",
"name": "Container Platform 4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14.38",
"product_id": "T037940-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.14.38"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.72",
"product_id": "T040822"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.72",
"product_id": "T040822-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.72"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-25220",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2021-25220"
},
{
"cve": "CVE-2021-43618",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2021-43618"
},
{
"cve": "CVE-2021-46848",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2021-46848"
},
{
"cve": "CVE-2022-1271",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-1271"
},
{
"cve": "CVE-2022-2795",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-2795"
},
{
"cve": "CVE-2022-3094",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-3094"
},
{
"cve": "CVE-2022-36227",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-36227"
},
{
"cve": "CVE-2022-47024",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-47024"
},
{
"cve": "CVE-2022-47629",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-47629"
},
{
"cve": "CVE-2022-48303",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-48303"
},
{
"cve": "CVE-2022-48468",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-48468"
},
{
"cve": "CVE-2022-48554",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-48554"
},
{
"cve": "CVE-2022-48624",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2022-48624"
},
{
"cve": "CVE-2023-22745",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-22745"
},
{
"cve": "CVE-2023-2602",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-2602"
},
{
"cve": "CVE-2023-2603",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-2603"
},
{
"cve": "CVE-2023-29491",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-29491"
},
{
"cve": "CVE-2023-2975",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-2975"
},
{
"cve": "CVE-2023-3446",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-3446"
},
{
"cve": "CVE-2023-36054",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-36054"
},
{
"cve": "CVE-2023-3817",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-3817"
},
{
"cve": "CVE-2023-39975",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-39975"
},
{
"cve": "CVE-2023-4408",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-4408"
},
{
"cve": "CVE-2023-44487",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-45288",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2023-4641",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-4641"
},
{
"cve": "CVE-2023-4692",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-4692"
},
{
"cve": "CVE-2023-4693",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-4693"
},
{
"cve": "CVE-2023-47038",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-47038"
},
{
"cve": "CVE-2023-50387",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-50387"
},
{
"cve": "CVE-2023-50868",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-50868"
},
{
"cve": "CVE-2023-5517",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-5517"
},
{
"cve": "CVE-2023-5678",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-5678"
},
{
"cve": "CVE-2023-5679",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-5679"
},
{
"cve": "CVE-2023-6004",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-6004"
},
{
"cve": "CVE-2023-6129",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-6129"
},
{
"cve": "CVE-2023-6237",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-6237"
},
{
"cve": "CVE-2023-6516",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-6516"
},
{
"cve": "CVE-2023-6597",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-6597"
},
{
"cve": "CVE-2023-6918",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-6918"
},
{
"cve": "CVE-2023-7008",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-7008"
},
{
"cve": "CVE-2023-7104",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2023-7104"
},
{
"cve": "CVE-2024-0450",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-0450"
},
{
"cve": "CVE-2024-0727",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-0727"
},
{
"cve": "CVE-2024-1048",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-1048"
},
{
"cve": "CVE-2024-1313",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-1313"
},
{
"cve": "CVE-2024-1394",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-1394"
},
{
"cve": "CVE-2024-22195",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-22195"
},
{
"cve": "CVE-2024-22365",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-22365"
},
{
"cve": "CVE-2024-24786",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-25062",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-25062"
},
{
"cve": "CVE-2024-26458",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-26458"
},
{
"cve": "CVE-2024-26461",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-26461"
},
{
"cve": "CVE-2024-28834",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-28834"
},
{
"cve": "CVE-2024-28835",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-28835"
},
{
"cve": "CVE-2024-2961",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-33599",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T035259",
"T038901",
"67646",
"T035260",
"T040822",
"T037940",
"T035698"
]
},
"release_date": "2024-06-06T22:00:00.000+00:00",
"title": "CVE-2024-33602"
}
]
}
WID-SEC-W-2024-1474
Vulnerability from csaf_certbund - Published: 2024-06-27 22:00 - Updated: 2025-08-26 22:00Summary
Red Hat OpenShift Container Platform: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff: Ein entfernter, anonymer oder lokaler Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, vertrauliche Informationen offenzulegen oder Daten zu manipulieren.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
Affected products
Known affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.12.63
Red Hat / OpenShift
|
Container Platform <4.12.63 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.1
Red Hat / OpenShift
|
Container Platform <4.16.1 | ||
|
Red Hat Ansible Automation Platform
Red Hat
|
cpe:/a:redhat:ansible_automation_platform:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15.28
Red Hat / OpenShift
|
Container Platform <4.15.28 | ||
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat OpenShift <4.16.24
Red Hat / OpenShift
|
<4.16.24 | ||
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.16.0
Red Hat / OpenShift
|
Container Platform <4.16.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Red Hat OpenShift API for Data Protection 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:api_for_data_protection_1
|
API for Data Protection 1 | |
|
Red Hat OpenShift Virtualization <4.15.5
Red Hat / OpenShift
|
Virtualization <4.15.5 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Container Platform <4.16.23
Red Hat / OpenShift
|
Container Platform <4.16.23 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.18.10
Red Hat / OpenShift
|
Container Platform <4.18.10 |
References
66 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder lokaler Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, vertrauliche Informationen offenzulegen oder Daten zu manipulieren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1474 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1474.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1474 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1474"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0040 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:0040"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0041 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:0041"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0043 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:0043"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0045 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:0045"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3637 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:3637"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3617 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:3617"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1616 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:1616"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3968 vom 2024-07-02",
"url": "https://errata.build.resf.org/RLSA-2024:3968"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4150 vom 2024-07-03",
"url": "https://access.redhat.com/errata/RHSA-2024:4150"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4159 vom 2024-07-03",
"url": "https://access.redhat.com/errata/RHSA-2024:4159"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-BD8FE42929 vom 2024-07-06",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-bd8fe42929"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4591 vom 2024-07-17",
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4613 vom 2024-07-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4613"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4699 vom 2024-07-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4699"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4850 vom 2024-07-31",
"url": "https://access.redhat.com/errata/RHSA-2024:4850"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4846 vom 2024-07-31",
"url": "https://access.redhat.com/errata/RHSA-2024:4846"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4960 vom 2024-08-07",
"url": "https://access.redhat.com/errata/RHSA-2024:4960"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5094 vom 2024-08-08",
"url": "https://access.redhat.com/errata/RHSA-2024:5094"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5258 vom 2024-08-13",
"url": "https://access.redhat.com/errata/RHSA-2024:5258"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASNITRO-ENCLAVES-2024-042 vom 2024-08-13",
"url": "https://alas.aws.amazon.com/AL2/ALASNITRO-ENCLAVES-2024-042.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5294 vom 2024-08-14",
"url": "https://access.redhat.com/errata/RHSA-2024:5294"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5294 vom 2024-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2024-5294.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5258 vom 2024-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2024-5258.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5200 vom 2024-08-19",
"url": "https://access.redhat.com/errata/RHSA-2024:5200"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5202 vom 2024-08-19",
"url": "https://access.redhat.com/errata/RHSA-2024:5202"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5438 vom 2024-08-21",
"url": "https://access.redhat.com/errata/RHSA-2024:5438"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5951 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5951"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6054 vom 2024-08-30",
"url": "https://access.redhat.com/errata/RHSA-2024:6054"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6708 vom 2024-09-16",
"url": "https://access.redhat.com/errata/RHSA-2024:6708"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6755 vom 2024-09-18",
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6687 vom 2024-09-19",
"url": "https://access.redhat.com/errata/RHSA-2024:6687"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6824 vom 2024-09-24",
"url": "https://access.redhat.com/errata/RHSA-2024:6824"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7164 vom 2024-09-26",
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7179 vom 2024-10-02",
"url": "https://access.redhat.com/errata/RHSA-2024:7179"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7174 vom 2024-10-02",
"url": "https://access.redhat.com/errata/RHSA-2024:7174"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7179 vom 2024-10-02",
"url": "https://access.redhat.com/errata/RHSA-2024:7182"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3718 vom 2024-10-02",
"url": "https://access.redhat.com/errata/RHSA-2024:3718"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7436 vom 2024-10-02",
"url": "https://access.redhat.com/errata/RHSA-2024:7436"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3717 vom 2024-10-02",
"url": "https://access.redhat.com/errata/RHSA-2024:3717"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7187 vom 2024-10-03",
"url": "https://access.redhat.com/errata/RHSA-2024:7187"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7184 vom 2024-10-03",
"url": "https://access.redhat.com/errata/RHSA-2024:7184"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7323 vom 2024-10-07",
"url": "https://access.redhat.com/errata/RHSA-2024:7323"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8040 vom 2024-10-14",
"url": "https://access.redhat.com/errata/RHSA-2024:8040"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7922 vom 2024-10-16",
"url": "https://access.redhat.com/errata/RHSA-2024:7922"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7939 vom 2024-10-16",
"url": "https://access.redhat.com/errata/RHSA-2024:7941"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8260 vom 2024-10-24",
"url": "https://access.redhat.com/errata/RHSA-2024:8260"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8534 vom 2024-10-28",
"url": "https://access.redhat.com/errata/RHSA-2024:8534"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8434 vom 2024-10-29",
"url": "https://access.redhat.com/errata/RHSA-2024:8434"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8425 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8425"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8676 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9181 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9181"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9098 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9098"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9097 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9097"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9102 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9102"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9960 vom 2024-11-19",
"url": "https://access.redhat.com/errata/RHSA-2024:9960"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9615 vom 2024-11-20",
"url": "https://access.redhat.com/errata/RHSA-2024:9615"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10147 vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10147"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8704 vom 2024-12-02",
"url": "https://access.redhat.com/errata/RHSA-2024:8704"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11293 vom 2024-12-17",
"url": "https://access.redhat.com/errata/RHSA-2024:11293"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6122 vom 2025-02-25",
"url": "https://access.redhat.com/errata/RHSA-2024:6122"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:4019 vom 2025-04-23",
"url": "https://access.redhat.com/errata/RHSA-2025:4019"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20013-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021364.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20055-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021310.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:0323-1 vom 2025-08-26",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TAOZOXVVSHLUMSNGQ4WCSWQAB5DM7EZH/"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift Container Platform: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-08-26T22:00:00.000+00:00",
"generator": {
"date": "2025-08-27T11:46:37.250+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2024-1474",
"initial_release_date": "2024-06-27T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-06-27T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-06-30T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-02T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Rocky Enterprise Software Foundation und Red Hat aufgenommen"
},
{
"date": "2024-07-03T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-07T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2024-07-17T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-24T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-25T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-30T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-31T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-07T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-12T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-13T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-08-14T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-08-18T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-20T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-28T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-29T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-16T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-18T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-24T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-25T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-01T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-03T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-07T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-13T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-15T22:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-16T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-23T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-28T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-29T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-30T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-11T23:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-18T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-19T23:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-26T23:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-02T23:00:00.000+00:00",
"number": "37",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-17T23:00:00.000+00:00",
"number": "38",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-24T23:00:00.000+00:00",
"number": "39",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-04-22T22:00:00.000+00:00",
"number": "40",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-06-04T22:00:00.000+00:00",
"number": "41",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-08-26T22:00:00.000+00:00",
"number": "42",
"summary": "Neue Updates von openSUSE aufgenommen"
}
],
"status": "final",
"version": "42"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform",
"product": {
"name": "Red Hat Ansible Automation Platform",
"product_id": "T031834",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T027916",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T033787",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Secondary Scheduler Operator",
"product": {
"name": "Red Hat OpenShift Secondary Scheduler Operator",
"product_id": "T027759",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:::secondary_scheduler_operator"
}
}
},
{
"category": "product_version",
"name": "Kube Descheduler Operator 5",
"product": {
"name": "Red Hat OpenShift Kube Descheduler Operator 5",
"product_id": "T033270",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:kube_descheduler_operator_5"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.16.0",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.16.0",
"product_id": "T035697"
}
},
{
"category": "product_version",
"name": "Container Platform 4.16.0",
"product": {
"name": "Red Hat OpenShift Container Platform 4.16.0",
"product_id": "T035697-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.16.0"
}
}
},
{
"category": "product_version",
"name": "Run Once Duration Override Operator 1",
"product": {
"name": "Red Hat OpenShift Run Once Duration Override Operator 1",
"product_id": "T035698",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:run_once_duration_override_operator_1"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.16.1",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.16.1",
"product_id": "T035804"
}
},
{
"category": "product_version",
"name": "Container Platform 4.16.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.16.1",
"product_id": "T035804-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.16.1"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.63",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.63",
"product_id": "T036942"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.63",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.63",
"product_id": "T036942-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.63"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15.28",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15.28",
"product_id": "T036960"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15.28",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15.28",
"product_id": "T036960-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15.28"
}
}
},
{
"category": "product_version_range",
"name": "Virtualization \u003c4.15.5",
"product": {
"name": "Red Hat OpenShift Virtualization \u003c4.15.5",
"product_id": "T037141"
}
},
{
"category": "product_version",
"name": "Virtualization 4.15.5",
"product": {
"name": "Red Hat OpenShift Virtualization 4.15.5",
"product_id": "T037141-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:virtualization__4.15.5"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.14.38",
"product_id": "T037940"
}
},
{
"category": "product_version",
"name": "Container Platform 4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14.38",
"product_id": "T037940-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.14.38"
}
}
},
{
"category": "product_version",
"name": "API for Data Protection 1",
"product": {
"name": "Red Hat OpenShift API for Data Protection 1",
"product_id": "T039224",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:api_for_data_protection_1"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.16.23",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.16.23",
"product_id": "T039272"
}
},
{
"category": "product_version",
"name": "Container Platform 4.16.23",
"product": {
"name": "Red Hat OpenShift Container Platform 4.16.23",
"product_id": "T039272-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.16.23"
}
}
},
{
"category": "product_version_range",
"name": "\u003c4.16.24",
"product": {
"name": "Red Hat OpenShift \u003c4.16.24",
"product_id": "T039438"
}
},
{
"category": "product_version",
"name": "4.16.24",
"product": {
"name": "Red Hat OpenShift 4.16.24",
"product_id": "T039438-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.16.24"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.18.10",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.18.10",
"product_id": "T043077"
}
},
{
"category": "product_version",
"name": "Container Platform 4.18.10",
"product": {
"name": "Red Hat OpenShift Container Platform 4.18.10",
"product_id": "T043077-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.18.10"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25210",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2019-25210"
},
{
"cve": "CVE-2023-29483",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-29483"
},
{
"cve": "CVE-2023-45142",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-45142"
},
{
"cve": "CVE-2023-45289",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-45289"
},
{
"cve": "CVE-2023-45290",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-45290"
},
{
"cve": "CVE-2023-47108",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-47108"
},
{
"cve": "CVE-2023-48795",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-52425",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2023-52425"
},
{
"cve": "CVE-2024-0874",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-0874"
},
{
"cve": "CVE-2024-1394",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-1394"
},
{
"cve": "CVE-2024-22189",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-22189"
},
{
"cve": "CVE-2024-2398",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-2398"
},
{
"cve": "CVE-2024-24783",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-24783"
},
{
"cve": "CVE-2024-24784",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-24784"
},
{
"cve": "CVE-2024-24785",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-24785"
},
{
"cve": "CVE-2024-24786",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-28110",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-28110"
},
{
"cve": "CVE-2024-28176",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-28176"
},
{
"cve": "CVE-2024-28180",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-28757",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-28757"
},
{
"cve": "CVE-2024-28849",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-28849"
},
{
"cve": "CVE-2024-29180",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-29180"
},
{
"cve": "CVE-2024-3177",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-3177"
},
{
"cve": "CVE-2024-3727",
"product_status": {
"known_affected": [
"T033787",
"T036942",
"67646",
"T035804",
"T031834",
"T036960",
"T037940",
"T039438",
"T004914",
"T035698",
"T032255",
"T035697",
"74185",
"T039224",
"T037141",
"T027916",
"T002207",
"T027759",
"T033270",
"T039272",
"T027843",
"398363",
"T043077"
]
},
"release_date": "2024-06-27T22:00:00.000+00:00",
"title": "CVE-2024-3727"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…